CVE-2023-41900: Jetty's OpenId Revoked authentication allows one request
First published: Fri Sep 15 2023(Updated: )
Eclipse Jetty could allow a remote authenticated attacker to bypass security restrictions, caused by improper authentication validation when using the optional nested LoginService. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass access restrictions.
Credit: security-advisories@github.com security-advisories@github.com security-advisories@github.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Eclipse Jetty | >=9.4.21<9.4.52 | |
| Eclipse Jetty | >=10.0.0<10.0.16 | |
| Eclipse Jetty | >=11.0.0<11.0.16 | |
| Debian Debian Linux | =11.0 | |
| Debian Debian Linux | =12.0 | |
| maven/org.eclipse.jetty:jetty-openid | >=11.0.0<=11.0.15 | 11.0.16 |
| maven/org.eclipse.jetty:jetty-openid | >=10.0.0<=10.0.15 | 10.0.16 |
| maven/org.eclipse.jetty:jetty-openid | >=9.4.21<=9.4.51 | 9.4.52 |
| debian/jetty9 | 9.4.16-0+deb10u1 9.4.50-4+deb10u1 9.4.39-3+deb11u2 9.4.50-4+deb11u1 9.4.50-4+deb12u2 9.4.53-1 | |
| redhat/jetty | <9.4.52 | 9.4.52 |
| redhat/jetty | <10.0.16 | 10.0.16 |
| redhat/jetty | <11.0.16 | 11.0.16 |
| IBM Secure Proxy | <=6.0.3 | |
| IBM Secure Proxy | <=6.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/eclipse/jetty.project/pull/9528
- https://github.com/eclipse/jetty.project/pull/9660
- https://github.com/eclipse/jetty.project/security/advisories/GHSA-pwh8-58vv-vw48
- https://www.debian.org/security/2023/dsa-5507
- https://security.netapp.com/advisory/ntap-20231110-0004/
- https://nvd.nist.gov/vuln/detail/CVE-2023-41900
- https://github.com/advisories/GHSA-pwh8-58vv-vw48 (Advisory)
- https://security-tracker.debian.org/tracker/CVE-2023-41900
- https://access.redhat.com/errata/RHSA-2023:7247
- https://bugzilla.redhat.com/show_bug.cgi?id=2247052
- https://exchange.xforce.ibmcloud.com/vulnerabilities/266185
- https://www.ibm.com/support/pages/node/7142038 (Advisory)
Frequently Asked Questions
What is CVE-2023-41900?
CVE-2023-41900 is a vulnerability in Jetty, a Java-based web server and servlet engine, which allows an authenticated user to have their authentication cleared from the session.
How severe is CVE-2023-41900?
CVE-2023-41900 has a severity rating of 4.3, which is considered medium.
Which versions of Jetty are affected by CVE-2023-41900?
Jetty versions 9.4.21 through 9.4.51, 10.0.15, and 11.0.0 through 11.0.15 are affected by CVE-2023-41900.
How can I fix CVE-2023-41900?
To fix CVE-2023-41900, you should update Jetty to version 9.4.52, 10.0.16, or 11.0.16, depending on your current version.
Are there any references for CVE-2023-41900?
Yes, you can find references for CVE-2023-41900 at the following links: [URL1], [URL2], [URL3].
- collector/nvd-index
- collector/mitre-cve
- collector/github-advisory
- alias/GHSA-pwh8-58vv-vw48
- alias/CVE-2023-41900
- collector/security-tracker-debian
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/severity
- agent/references
- agent/author
- agent/remedy
- agent/title
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/event
- collector/nvd-api
- source/NVD
- agent/weakness
- agent/description
- collector/github-advisory-latest
- source/GitHub
- agent/last-modified-date
- collector/nvd-cve
- agent/tags
- collector/ibm-support
- source/IBM
- vendor/eclipse
- canonical/eclipse jetty
- version/eclipse jetty/9.4.21
- version/eclipse jetty/10.0.0
- version/eclipse jetty/11.0.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/11.0
- version/debian debian linux/12.0
- package-manager/maven
- package-manager/debian
- package-manager/redhat
- vendor/ibm
- canonical/ibm secure proxy
- version/ibm secure proxy/6.0.3
- version/ibm secure proxy/6.1.0