CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5614

Mortbay Jetty before 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote attackers to hijack browser sessions via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.035

EPSS Ranking 87.1%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2007-5614

Mortbay Jetty » Jetty » Version: 1.0

cpe:2.3:a:mortbay_jetty:jetty:1.0
Mortbay Jetty » Jetty » Version: 2.4

cpe:2.3:a:mortbay_jetty:jetty:2.4
Mortbay Jetty » Jetty » Version: 3.0

cpe:2.3:a:mortbay_jetty:jetty:3.0
Mortbay Jetty » Jetty » Version: 3.1

cpe:2.3:a:mortbay_jetty:jetty:3.1
Mortbay Jetty » Jetty » Version: 4.0

cpe:2.3:a:mortbay_jetty:jetty:4.0
Mortbay Jetty » Jetty » Version: 4.1

cpe:2.3:a:mortbay_jetty:jetty:4.1
Mortbay Jetty » Jetty » Version: 4.2

cpe:2.3:a:mortbay_jetty:jetty:4.2
Mortbay Jetty » Jetty » Version: 5

cpe:2.3:a:mortbay_jetty:jetty:5
Mortbay Jetty » Jetty » Version: 5.1

cpe:2.3:a:mortbay_jetty:jetty:5.1
Mortbay Jetty » Jetty » Version: 6

cpe:2.3:a:mortbay_jetty:jetty:6
Mortbay Jetty » Jetty » Version: 6.1

cpe:2.3:a:mortbay_jetty:jetty:6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5614

Products

Pricing

Contact Us