GraphJet
GraphJet copied to clipboard
twitter
[Snyk] Upgrade org.eclipse.jetty:jetty-server from 9.4.17.v20190418 to 9.4.50.v20221201
Snyk has created this PR to upgrade org.eclipse.jetty:jetty-server from 9.4.17.v20190418 to 9.4.50.v20221201.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is 33 versions ahead of your current version.
- The recommended version was released a month ago, on 2022-12-01.
The recommended version fixes:
| Severity | Issue | PriorityScore (*) | Exploit Maturity |
|---|---|---|---|
 |
Denial of Service (DoS) SNYK-JAVA-ORGECLIPSEJETTY-1090340 |
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
Proof of Concept |
 |
Denial of Service (DoS) SNYK-JAVA-ORGECLIPSEJETTY-1080611 |
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
Proof of Concept |
|
HTTP Request Smuggling SNYK-JAVA-ORGECLIPSEJETTY-1047304 |
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
No Known Exploit |
 |
Improper Input Validation SNYK-JAVA-ORGECLIPSEJETTY-2945452 |
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
No Known Exploit |
|
Information Exposure SNYK-JAVA-ORGECLIPSEJETTY-1313686 |
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🔕 Ignore this dependency or unsubscribe from future upgrade PRs
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.
