Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2015-2080 - Vulnerability Database
Jetty

Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2015-2080

High
Reference: CVE-2015-2080
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-2080
Title: Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

The exception handling code in Eclipse Jetty before 9.2.9.v20150224 allows remote attackers to obtain sensitive information from process memory via illegal characters in an HTTP header aka JetLeak.