✅ Check your installed version
All known vulnerabilities
HIGH7.4CVE-2026-2332Jetty has HTTP Request Smuggling via Chunked Extension Quoted-String Parsing >= 12.1.0, < 12.1.7
MEDIUM5.3CVE-2023-40167Jetty accepts "+" prefixed value in Content-Length >= 9.0.0, < 9.4.52
LOW3.7CVE-2025-11143org.eclipse.jetty:jetty-http has different parsing of invalid URIs >= 9.4.0, <= 9.4.58
LOW3.7CVE-2024-6763Eclipse Jetty URI parsing of invalid authority >= 7.0.0, < 12.0.12
LOW2.7CVE-2022-2047Jetty invalid URI parsing may produce invalid HttpURI.authority from 0, < 9.4.47