Main Vulnerability Database Exploits ID:5767 - Exploit for Information disclosure in Jetty - CVE-2015-2080

ID:5767 - Exploit for Information disclosure in Jetty - CVE-2015-2080

Published: June 17, 2021

Vulnerability identifier: #VU11844

Vulnerability risk: Low

CVE-ID: CVE-2015-2080

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:
Jetty

Link to public exploit:

https://www.exploit-db.com/exploits/48098/

Vulnerability description

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists in an HTTP header, aka JetLeak due to improper initialization of process memory. A remote attacker can gain access to potentially sensitive information.

Remediation

Update to versions 8.2.0-R18, 8.3.0-R11, 8.4.1-R5 or later.

ID:5767 - Exploit for Information disclosure in Jetty - CVE-2015-2080

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human