CVE-2009-1523
Description
Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x before 6.1.17, and 7.x through 7.0.0.M2 allows remote attackers to access arbitrary files via directory traversal sequences in the URI.
Risk Information
Base Score
5.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
12.18
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 5.1 | Windows |
| Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 5.2 | Windows |
| Vulnerabilities CVE-2009-1523 are fixed in Mortbay - jetty 6.1.17 | Windows |
| Vulnerabilities CVE-2009-1523 are fixed in Mortbay - jetty 7.0.0 | Windows |
| Vulnerabilities CVE-2009-1523 are fixed in Mortbay - jetty for Linux 6.1.17 | Linux |
| Vulnerabilities CVE-2009-1523 are fixed in Mortbay - jetty for Linux 7.0.0 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234