CVE-2023-41900

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-41900
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-41900.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-41900
Aliases
Downstream
Related
Published
2023-09-15T20:17:42.201Z
Modified
2026-02-03T07:36:08.739518Z
Severity
  • 3.5 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N CVSS Calculator
Summary
Jetty's OpenId Revoked authentication allows one request
Details

Jetty is a Java based web server and servlet engine. Versions 9.4.21 through 9.4.51, 10.0.15, and 11.0.15 are vulnerable to weak authentication. If a Jetty OpenIdAuthenticator uses the optional nested LoginService, and that LoginService decides to revoke an already authenticated user, then the current request will still treat the user as authenticated. The authentication is then cleared from the session and subsequent requests will not be treated as authenticated. So a request on a previously authenticated session could be allowed to bypass authentication after it had been rejected by the LoginService. This impacts usages of the jetty-openid which have configured a nested LoginService and where that LoginService will is capable of rejecting previously authenticated users. Versions 9.4.52, 10.0.16, and 11.0.16 have a patch for this issue.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/41xxx/CVE-2023-41900.json",
    "cwe_ids": [
        "CWE-1390"
    ],
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/eclipse/jetty.project

Affected ranges

Type
GIT
Repo
https://github.com/eclipse/jetty.project
Events
Introduced
72970db61a2904371e1218a95a3bef5d79788c33
Last affected
b45c405e4544384de066f814ed42ae3dceacdd49
Database specific 
{
    "versions": [
        {
            "introduced": "9.4.21"
        },
        {
            "last_affected": "9.4.51"
        }
    ]
}
Type
GIT
Repo
https://github.com/eclipse/jetty.project
Events
Introduced
b9645a17373e4e9b7f30b6c0a07defcea2cb660b
Last affected
68017dbd00236bb7e187330d7585a059610f661d
Database specific 
{
    "versions": [
        {
            "introduced": "10.0.0"
        },
        {
            "last_affected": "10.0.15"
        }
    ]
}
Type
GIT
Repo
https://github.com/eclipse/jetty.project
Events
Introduced
432f896d7a4555fcc81f38108757ea0aca8788e6
Last affected
5bc5e562c8d05c5862505aebe5cf83a61bdbcb96
Database specific 
{
    "versions": [
        {
            "introduced": "11.0.0"
        },
        {
            "last_affected": "11.0.15"
        }
    ]
}

Affected versions

jetty-10.*
jetty-10.0.0
jetty-10.0.1
jetty-10.0.13
jetty-10.0.15
jetty-10.0.2
jetty-10.0.4
jetty-10.0.5
jetty-10.0.6
jetty-10.0.7
jetty-10.0.8
jetty-11.*
jetty-11.0.0
jetty-11.0.1
jetty-11.0.13
jetty-11.0.15
jetty-11.0.2
jetty-11.0.4
jetty-11.0.5
jetty-11.0.6
jetty-11.0.7
jetty-11.0.8
jetty-11.0.9
jetty-9.*
jetty-9.4.36.v20210114
jetty-9.4.37.v20210219

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-41900.json"