Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request · CVE-2016-4800 · GitHub Advisory Database · GitHub

Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request

Critical severity GitHub Reviewed Published Oct 19, 2018 to the GitHub Advisory Database • Updated Jan 8, 2023

Package

org.eclipse.jetty:jetty-server (Maven)

Affected versions

>= 9.3.0, < 9.3.9

Patched versions

9.3.9

Description

The path normalization mechanism in PathResource class in Eclipse Jetty 9.3.x before 9.3.9 on Windows allows remote attackers to bypass protected resource restrictions and other security constraints via a URL with certain escaped characters, related to backslashes.

References

Published to the GitHub Advisory Database Oct 19, 2018

Reviewed Jun 16, 2020

Last updated Jan 8, 2023

Severity

Critical

9.8

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H