Skip to main content

Eclipse Jetty CVE-2026-10051

| EUVDEUVD-2026-43645 MEDIUM
Information Exposure (CWE-200)
2026-07-14 eclipse
6.9
CVSS 4.0 · Vendor: eclipse
Share

Severity by source

Vendor (eclipse) PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
5.3 MEDIUM

Network-reachable with no privileges or interaction required; limited to low confidentiality impact as only trailer data is exposed with no integrity or availability consequence.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (eclipse).

CVSS VectorVendor: eclipse

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
Analysis Generated
Jul 14, 2026 - 09:33 vuln.today
CVE Published
Jul 14, 2026 - 08:44 cve.org
MEDIUM 6.9

DescriptionCVE.org

In Eclipse Jetty, a first HTTP/1.1 request with trailers causes the server to retain the trailers in subsequent requests performed over the same connection. Subsequent request that do not have trailers report the trailers of the first request. Subsequent request that do have trailers report the union of trailers of the first request and the current request.

AnalysisAI

HTTP/1.1 trailer leakage in Eclipse Jetty allows a remote unauthenticated attacker to read trailer headers from a previous request when sharing a persistent connection with another party. Trailers sent in an initial request are incorrectly retained in the server's connection state, causing them to bleed into all subsequent requests on the same keep-alive connection - either appended wholesale (if the later request has no trailers) or merged with the later request's own trailers. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Send HTTP/1.1 chunked request with trailers
Delivery
Server retains trailers in connection state
Exploit
Subsequent request received on same connection
Execution
Server delivers stale trailers to new request context
Impact
Attacker or victim reads leaked trailer values

Vulnerability AssessmentAI

Exploitation HTTP/1.1 must be used (the issue is specific to HTTP/1.1 trailer handling, not HTTP/2 or HTTP/3). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 score of 6.9 (AV:N/AC:L/AT:N/PR:N/UI:N/VC:L) reflects a remotely exploitable, low-complexity information disclosure with limited confidentiality impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker sends an HTTP/1.1 request with a chunked body and trailers containing a known marker value over a persistent connection to a Jetty server. A victim whose request is subsequently handled over that same connection - possible when a shared proxy pools backend connections - receives the attacker's trailer values in their request context, potentially leaking any sensitive data the attacker embedded or, conversely, exposing the victim's own trailers to the attacker's next request. …
Remediation Upgrade Eclipse Jetty to a patched release once one is confirmed by the Eclipse Foundation - the upstream fix reference at https://gitlab.eclipse.org/security/cve-assignment/-/work_items/119 should be monitored for a specific target version, as no exact patch version is confirmed in available data at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-10051 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy