Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jetty Improper Resource Shutdown or Release Vulnerability - CVE-2022-2191 - Vulnerability Database
Jetty

Jetty Improper Resource Shutdown or Release Vulnerability - CVE-2022-2191

High
Reference: CVE-2022-2191
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-2191
Title: Jetty Improper Resource Shutdown or Release Vulnerability
Overview:

In Eclipse Jetty versions 10.0.0 thru 10.0.9 and 11.0.0 thru 11.0.9 versions SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.