Org.eclipse.jetty.http2:http2-common
This hub aggregates every CVE we track for Org.eclipse.jetty.http2:http2-common, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
3
High
1
In CISA KEV
Severity distribution
HIGH3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Org.eclipse.jetty.http2:http2-common.
- CVE-2025-5115MadeYouReset HTTP/2 vulnerability7.5
- CVE-2024-22201Jetty connection leaking on idle timeout when TCP congested7.5
- CVE-2023-44487The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.KEV7.5
Product normalization is registry-driven with AI assist and human review. How it works