CVE-2020-27223

MEDIUM

Eclipse Jetty 9.4.6-11.0.0 - DoS

Title source: llm

Description

In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” (i.e. q) parameters, the server may enter a denial of service (DoS) state due to high CPU usage processing those quality values, resulting in minutes of CPU time exhausted processing those quality values.

Exploits (2)

nomisec WORKING POC 3 stars

by motikan2010 · poc

https://github.com/motikan2010/CVE-2020-27223

View Code ZIP pw:eip

nomisec STUB

by ttestoo · poc

https://github.com/ttestoo/Jetty-CVE-2020-27223

View Code ZIP pw:eip

References (67)

[Vendor Advisory] https://bugs.eclipse.org/bugs/show_bug.cgi?id=571128

[Third Party Advisory] https://github.com/eclipse/jetty.project/security/advisories/GHSA-m394-8rww-3jr7

[Mailing List] https://lists.apache.org/thread.html/r068dfd35ce2193f6af28b74ff29ab148c2b2cacb235995576f5bea78%40%3Cissues.solr.apache.org%3E

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20210401-0005/

[Third Party Advisory] https://www.debian.org/security/2021/dsa-4949

[Patch, Third Party Advisory] https://www.oracle.com/security-alerts/cpuApr2021.html

[Patch] https://github.com/jetty/jetty.project/commit/10e531756b972162eed402c44d0244f7f6b85131

[Mailing List] https://lists.apache.org/thread.html/r07aedcb1ece62969c406cb84c8f0e22cec7e42cdc272f3176e473320%40%3Cusers.solr.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r0b639bd9bfaea265022125d18acd2fc6456044b76609ec74772c9567%40%3Cissues.zookeeper.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r0c6eced465950743f3041b03767a32b2e98d19731bd72277fc7ea428%40%3Ccommits.zookeeper.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r0cdab13815fc419805a332278c8d27e354e78560944fc36db0bdc760%40%3Cnotifications.zookeeper.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r0e25cdf3722a24c53049d37396f0da8502cb4b7cdc481650dc601dbc%40%3Cgitbox.activemq.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r105f4e52feb051faeb9141ef78f909aaf5129d6ed1fc52e099c79463%40%3Cissues.spark.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r1414ab2b3f4bb4c0e736caff6dc8d15f93f6264f0cca5c47710d7bb3%40%3Creviews.spark.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r1b7ed296a865e3f1337a96ee9cd51f6d154d881a30da36020ca72a4b%40%3Cjira.kafka.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r1b803e6ebdac5f670708878fb1b27cd7a0ce9d774a60e797e58cee6f%40%3Cissues.nifi.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r26d9196f4d2afb9bec2784bcb6fc183aca82e4119bf41bdc613eec01%40%3Cnotifications.zookeeper.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r27ad7843d060762cc942820566eeaa9639f75371afedf8124b943283%40%3Cissues.spark.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r2c2c7b2971360fb946bbf062c58d7245927dd1ce9150fc9987f65409%40%3Cjira.kafka.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r2c947376491a20d1cf143bf3c21ed74113e099d806cfe4c490a45ad8%40%3Creviews.spark.apache.org%3E

... and 47 more

Scores

CVSS v3 5.2

EPSS 0.3382

EPSS Percentile 97.0%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Details

CWE

CWE-407 CWE-400

Status published

Products (21)

apache/nifi 1.13.0

apache/solr 8.8.1

apache/spark 3.1.1

debian/debian_linux 10.0

eclipse/jetty 9.4.6 20170531 (2 CPE variants)

eclipse/jetty 9.4.36 (2 CPE variants)

eclipse/jetty 10.0.0

eclipse/jetty 11.0.0

eclipse/jetty 9.4.7 - 9.4.36

netapp/element_plug-in_for_vcenter_server

... and 11 more

Published Feb 26, 2021

Tracked Since Feb 18, 2026