CVE-2026-5795

EUVD-2026-20473
In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable.


Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator code without clearing those ThreadLocals.


A subsequent request using the same thread inherits the ThreadLocal values, leading to a broken access control and privilege escalation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.4 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
Affected Products (NVD)
VendorProductVersion
eclipsejetty
9.4.0 ≤
𝑥
≤ 9.4.58
eclipsejetty
10.0.0 ≤
𝑥
≤ 10.0.26
eclipsejetty
11.0.0 ≤
𝑥
≤ 11.0.26
eclipsejetty
12.0.0 ≤
𝑥
< 12.0.34
eclipsejetty
12.1.0 ≤
𝑥
< 12.1.8
𝑥
= Vulnerable software versions
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
jetty-http
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-io
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-security
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-server
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-servlet
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-util
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
jetty-util-ajax
suse enterprise desktop 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise sap 15 SP7
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP4
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP5
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP6
9.4.58-150200.3.40.1
fixed
suse enterprise server 15 SP7
9.4.58-150200.3.40.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
jetty-annotations
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-ant
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-client
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-continuation
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-deploy
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-http
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-io
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jaas
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jaspi
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-javadoc
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jmx
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jndi
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jsp
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-jspc-maven-plugin
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-maven-plugin
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-monitor
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-plus
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-project
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-proxy
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-rewrite
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-runner
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-security
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-server
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-servlet
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-servlets
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-start
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-util
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-util-ajax
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-webapp
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-api
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-client
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-common
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-parent
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-server
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-websocket-servlet
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed
jetty-xml
Amazon Linux 2
0:9.0.3-8.amzn2.0.7
fixed