GZIP Request Body Inflation Vulnerability in Eclipse Jetty
CVE-2020-27218

4.8MEDIUM

Key Information:

Vendor: The Eclipse Foundation
Status: Eclipse Jetty
Vendor: CVE Published:; 28 November 2020

What is CVE-2020-27218?

In certain versions of Eclipse Jetty, a vulnerability exists that allows for request body inflation if GZIP request body inflation is enabled and multiple client requests are sent over a single connection. An attacker can exploit this weakness by sending a request where the body is received completely but not processed. Consequently, the next request utilizing the same connection may inadvertently include the data from the previous request's body. While the attacker does not gain visibility to this data, they have the capability to inject arbitrary data into subsequent requests, potentially compromising the integrity of the application.

Affected Version(s)

Eclipse Jetty 9.4.0.RC0 to 9.4.34.v20201102

Eclipse Jetty 10.0.0.alpha0 to 10.0.0.beta2

Eclipse Jetty 11.0.0.alpha0 to 11.0.0.beta2

References

https://bugs.eclipse.org/bugs/show_bug.cgi?id=568892

https://github.com/eclipse/jetty.project/security/advisor...

https://lists.apache.org/thread.html/r6d5bb60a13e8b539600...

mailing-list

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 28, 2020
Vulnerability Reserved
Oct 19, 2020

The Eclipse Foundation

What is CVE-2020-27218?

Affected Version(s)

References

CVSS V3.1

Timeline