Filters

Versions

1.1.5
2
1.2.0-rc
1
1.2.6
1
2.0.0
1

maven/io.ktor:ktor-client-core-jvmIn JetBrains Ktor before 3.0.0 improper caching in HttpCache Plugin could lead to response informati…

medium
5.3
First published (updated )
CVE-2024-49580

JetBrains KtorIn JetBrains Ktor before 2.3.5 server certificates were not verified

critical
9.1
First published (updated )
CVE-2023-45613

JetBrains KtorXEE

critical
9.8
First published (updated )
CVE-2023-45612

JetBrains KtorIn JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the exceptio…

low
3.3
First published (updated )
CVE-2023-34339

JetBrains KtorPath Traversal

high
7.5
First published (updated )
CVE-2022-48476

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains KtorIn JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases

medium
6.5
First published (updated )
CVE-2022-38180

JetBrains KtorJetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack

medium
6.1
First published (updated )
CVE-2022-38179

JetBrains KtorSHA1 implementation in JetBrains Ktor Native 2.0.0 was returning the same value. The issue was fixed…

high
8.7
First published (updated )
CVE-2022-29930

JetBrains KtorIn JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using …

medium
4
First published (updated )
CVE-2022-29035

JetBrains KtorIn JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is imple…

high
7.5
First published (updated )
CVE-2021-43203

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains KtorIn JetBrains Ktor before 1.4.3, HTTP Request Smuggling was possible.

medium
5.3
First published (updated )
CVE-2021-25762

JetBrains KtorIn JetBrains Ktor before 1.4.2, weak cipher suites were enabled by default.

medium
5.3
First published (updated )
CVE-2021-25763

JetBrains KtorWeak Encryption

medium
5.3
First published (updated )
CVE-2021-25761

JetBrains KtorIn JetBrains Ktor before 1.4.1, HTTP request smuggling was possible.

medium
6.5
First published (updated )
CVE-2020-26129

JetBrains KtorRequest smuggling is possible in Ktor when both chunked TE and content length specified

high
7.5
First published (updated )
CVE-2020-5207

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains KtorJetBrains Ktor framework before version 1.2.6 was vulnerable to HTTP Response Splitting.

medium
5.4
First published (updated )
CVE-2019-19389

JetBrains KtorIn Ktor through 1.2.6, the client resends data from the HTTP Authorization header to a redirect loca…

medium
6.1
First published (updated )
CVE-2019-19703

JetBrains KtorCommand Injection

critical
9.8
First published (updated )
CVE-2019-12736

JetBrains KtorUserHashedTableAuth in JetBrains Ktor framework before 1.2.0-rc uses a One-Way Hash with a Predictab…

medium
5.3
First published (updated )
CVE-2019-12737

JetBrains KotlinJetBrains Ktor framework (created using the Kotlin IDE template) versions before 1.1.0 were resolvin…

high
8.1
First published (updated )
CVE-2019-10102

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203