JetLeak: Information Disclosure Vulnerability in Eclipse Jetty
CVE-2015-2080 · MEDIUM Severity
AV:N/AC:L/AU:N/C:P/I:N/A:N
The exception handling code in Eclipse Jetty before 9.2.9.v20150224 allows remote attackers to obtain sensitive information from process memory via illegal characters in an HTTP header, aka JetLeak.
Learn more about our Web Application Penetration Testing UK.