CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4609

The Dump Servlet in Mort Bay Jetty 6.x and 7.0.0 allows remote attackers to obtain sensitive information about internal variables and other data via a request to a URI ending in /dump/, as demonstrated by discovering the value of the getPathTranslated variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.3%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2009-4609

Mortbay » Jetty » Version: 6.0.0

cpe:2.3:a:mortbay:jetty:6.0.0
Mortbay » Jetty » Version: 6.0.1

cpe:2.3:a:mortbay:jetty:6.0.1
Mortbay » Jetty » Version: 6.0.2

cpe:2.3:a:mortbay:jetty:6.0.2
Mortbay » Jetty » Version: 6.1.0

cpe:2.3:a:mortbay:jetty:6.1.0
Mortbay » Jetty » Version: 6.1.1

cpe:2.3:a:mortbay:jetty:6.1.1
Mortbay » Jetty » Version: 6.1.10

cpe:2.3:a:mortbay:jetty:6.1.10
Mortbay » Jetty » Version: 6.1.11

cpe:2.3:a:mortbay:jetty:6.1.11
Mortbay » Jetty » Version: 6.1.12

cpe:2.3:a:mortbay:jetty:6.1.12
Mortbay » Jetty » Version: 6.1.14

cpe:2.3:a:mortbay:jetty:6.1.14
Mortbay » Jetty » Version: 6.1.15

cpe:2.3:a:mortbay:jetty:6.1.15
Mortbay » Jetty » Version: 6.1.16

cpe:2.3:a:mortbay:jetty:6.1.16
Mortbay » Jetty » Version: 6.1.19

cpe:2.3:a:mortbay:jetty:6.1.19
Mortbay » Jetty » Version: 6.1.2

cpe:2.3:a:mortbay:jetty:6.1.2
Mortbay » Jetty » Version: 6.1.20

cpe:2.3:a:mortbay:jetty:6.1.20
Mortbay » Jetty » Version: 6.1.3

cpe:2.3:a:mortbay:jetty:6.1.3
Mortbay » Jetty » Version: 6.1.4

cpe:2.3:a:mortbay:jetty:6.1.4
Mortbay » Jetty » Version: 6.1.5

cpe:2.3:a:mortbay:jetty:6.1.5
Mortbay » Jetty » Version: 6.1.6

cpe:2.3:a:mortbay:jetty:6.1.6
Mortbay » Jetty » Version: 6.1.7

cpe:2.3:a:mortbay:jetty:6.1.7
Mortbay » Jetty » Version: 6.1.8

cpe:2.3:a:mortbay:jetty:6.1.8
Mortbay » Jetty » Version: 6.1.9

cpe:2.3:a:mortbay:jetty:6.1.9
Mortbay » Jetty » Version: 7.0.0

cpe:2.3:a:mortbay:jetty:7.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4609

Products

Pricing

Contact Us