[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-28164":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":1088,"aliases":1129,"duplicate_of":9,"upstream":1131,"downstream":1132,"duplicates":1143,"related":1144,"reserved_at":9,"published_at":1147,"modified_at":1148,"state":1149,"summary":1150,"references_raw":1158,"kevs":1361,"epss":1362,"epss_history":1365,"metrics":1559,"affected":1573},"CVE-2021-28164","In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the default compliance mode allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF directory. For example a request to /context/%2e/WEB-INF/web.xml can retrieve the web.xml file. This can reveal sensitive information regarding the implementation of a web application.",null,[11,18,1081],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],{"_key":19,"id":19,"name":20,"description":21,"type":22,"status":23,"abstraction":24,"likelihood_of_exploit":25,"capec":26},"CWE-200","Exposure of Sensitive Information to an Unauthorized Actor","The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.","weakness","Draft","Class","High",[27,31,215,241,245,249,253,257,261,265,355,359,363,385,389,393,397,401,411,415,419,423,427,431,435,439,443,507,511,537,559,563,567,571,575,579,583,587,591,595,599,603,607,611,615,619,651,655,677,699,745,771,871,875,1000,1037,1047,1057,1077],{"id":28,"name":29,"techniques":30},"CAPEC-116","Excavation",[],{"id":32,"name":33,"techniques":34},"CAPEC-13","Subverting Environment Variable Values",[35,133,175],{"id":36,"name":37,"tactics":38,"countermeasures":45},"T1562.003","Impair Command History Logging",[39,42],{"id":40,"name":41},"TA0030","Defense Evasion",{"id":43,"name":44},"TA0005","Stealth",[46,51,56,60,64,68,73,77,82,87,91,95,100,104,109,113,117,121,125,129],{"id":47,"name":48,"tactic":49},"D3-CI","Configuration Inventory",{"name":50},"Model",{"id":52,"name":53,"tactic":54},"D3-FA","File Analysis",{"name":55},"Detect",{"id":57,"name":58,"tactic":59},"D3-FIM","File Integrity Monitoring",{"name":55},{"id":61,"name":62,"tactic":63},"D3-DA","Dynamic Analysis",{"name":55},{"id":65,"name":66,"tactic":67},"D3-EFA","Emulated File Analysis",{"name":55},{"id":69,"name":70,"tactic":71},"D3-FEV","File Eviction",{"name":72},"Evict",{"id":74,"name":75,"tactic":76},"D3-RKD","Registry Key Deletion",{"name":72},{"id":78,"name":79,"tactic":80},"D3-DF","Decoy File",{"name":81},"Deceive",{"id":83,"name":84,"tactic":85},"D3-DRA","Disable Remote Access",{"name":86},"Harden",{"id":88,"name":89,"tactic":90},"D3-ACH","Application Configuration Hardening",{"name":86},{"id":92,"name":93,"tactic":94},"D3-FE","File Encryption",{"name":86},{"id":96,"name":97,"tactic":98},"D3-RC","Restore Configuration",{"name":99},"Restore",{"id":101,"name":102,"tactic":103},"D3-RF","Restore File",{"name":99},{"id":105,"name":106,"tactic":107},"D3-CQ","Content Quarantine",{"name":108},"Isolate",{"id":110,"name":111,"tactic":112},"D3-CF","Content Filtering",{"name":108},{"id":114,"name":115,"tactic":116},"D3-LFP","Local File Permissions",{"name":108},{"id":118,"name":119,"tactic":120},"D3-RFAM","Remote File Access Mediation",{"name":108},{"id":122,"name":123,"tactic":124},"D3-CM","Content Modification",{"name":108},{"id":126,"name":127,"tactic":128},"D3-EAL","Executable Allowlisting",{"name":108},{"id":130,"name":131,"tactic":132},"D3-EDL","Executable Denylisting",{"name":108},{"id":134,"name":135,"tactics":136,"countermeasures":148},"T1574.006","Dynamic Linker Hijacking",[137,140,143,144,145],{"id":138,"name":139},"TA0110","Persistence",{"id":141,"name":142},"TA0111","Privilege Escalation",{"id":40,"name":41},{"id":43,"name":44},{"id":146,"name":147},"TA0104","Execution",[149,153,155,157,159,161,163,165,167,169,171,173],{"id":150,"name":151,"tactic":152},"D3-SFA","System File Analysis",{"name":55},{"id":52,"name":53,"tactic":154},{"name":55},{"id":57,"name":58,"tactic":156},{"name":55},{"id":69,"name":70,"tactic":158},{"name":72},{"id":78,"name":79,"tactic":160},{"name":81},{"id":92,"name":93,"tactic":162},{"name":86},{"id":101,"name":102,"tactic":164},{"name":99},{"id":110,"name":111,"tactic":166},{"name":108},{"id":114,"name":115,"tactic":168},{"name":108},{"id":118,"name":119,"tactic":170},{"name":108},{"id":105,"name":106,"tactic":172},{"name":108},{"id":122,"name":123,"tactic":174},{"name":108},{"id":176,"name":177,"tactics":178,"countermeasures":184},"T1574.007","Path Interception by PATH Environment Variable",[179,180,181,182,183],{"id":138,"name":139},{"id":141,"name":142},{"id":40,"name":41},{"id":43,"name":44},{"id":146,"name":147},[185,187,189,191,193,195,197,199,201,203,205,207,209,211,213],{"id":52,"name":53,"tactic":186},{"name":55},{"id":57,"name":58,"tactic":188},{"name":55},{"id":61,"name":62,"tactic":190},{"name":55},{"id":65,"name":66,"tactic":192},{"name":55},{"id":69,"name":70,"tactic":194},{"name":72},{"id":78,"name":79,"tactic":196},{"name":81},{"id":92,"name":93,"tactic":198},{"name":86},{"id":101,"name":102,"tactic":200},{"name":99},{"id":110,"name":111,"tactic":202},{"name":108},{"id":114,"name":115,"tactic":204},{"name":108},{"id":118,"name":119,"tactic":206},{"name":108},{"id":105,"name":106,"tactic":208},{"name":108},{"id":122,"name":123,"tactic":210},{"name":108},{"id":126,"name":127,"tactic":212},{"name":108},{"id":130,"name":131,"tactic":214},{"name":108},{"id":216,"name":217,"techniques":218},"CAPEC-169","Footprinting",[219,227,235],{"id":220,"name":221,"tactics":222,"countermeasures":226},"T1217","Browser Information Discovery",[223],{"id":224,"name":225},"TA0102","Discovery",[],{"id":228,"name":229,"tactics":230,"countermeasures":234},"T1592","Gather Victim Host Information",[231],{"id":232,"name":233},"TA0043","Reconnaissance",[],{"id":236,"name":237,"tactics":238,"countermeasures":240},"T1595","Active Scanning",[239],{"id":232,"name":233},[],{"id":242,"name":243,"techniques":244},"CAPEC-22","Exploiting Trust in Client",[],{"id":246,"name":247,"techniques":248},"CAPEC-224","Fingerprinting",[],{"id":250,"name":251,"techniques":252},"CAPEC-285","ICMP Echo Request Ping",[],{"id":254,"name":255,"techniques":256},"CAPEC-287","TCP SYN Scan",[],{"id":258,"name":259,"techniques":260},"CAPEC-290","Enumerate Mail Exchange (MX) Records",[],{"id":262,"name":263,"techniques":264},"CAPEC-291","DNS Zone Transfers",[],{"id":266,"name":267,"techniques":268},"CAPEC-292","Host Discovery",[269],{"id":270,"name":271,"tactics":272,"countermeasures":274},"T1018","Remote System Discovery",[273],{"id":224,"name":225},[275,279,281,283,285,289,293,297,301,305,309,313,317,321,323,325,327,329,333,335,337,339,341,343,347,349,351],{"id":276,"name":277,"tactic":278},"D3-SCA","System Call Analysis",{"name":55},{"id":150,"name":151,"tactic":280},{"name":55},{"id":52,"name":53,"tactic":282},{"name":55},{"id":57,"name":58,"tactic":284},{"name":55},{"id":286,"name":287,"tactic":288},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":55},{"id":290,"name":291,"tactic":292},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":55},{"id":294,"name":295,"tactic":296},"D3-CSPP","Client-server Payload Profiling",{"name":55},{"id":298,"name":299,"tactic":300},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":55},{"id":302,"name":303,"tactic":304},"D3-NTSA","Network Traffic Signature Analysis",{"name":55},{"id":306,"name":307,"tactic":308},"D3-APCA","Application Protocol Command Analysis",{"name":55},{"id":310,"name":311,"tactic":312},"D3-NTCD","Network Traffic Community Deviation",{"name":55},{"id":314,"name":315,"tactic":316},"D3-RTSD","Remote Terminal Session Detection",{"name":55},{"id":318,"name":319,"tactic":320},"D3-PSA","Process Spawn Analysis",{"name":55},{"id":69,"name":70,"tactic":322},{"name":72},{"id":78,"name":79,"tactic":324},{"name":81},{"id":92,"name":93,"tactic":326},{"name":86},{"id":101,"name":102,"tactic":328},{"name":99},{"id":330,"name":331,"tactic":332},"D3-SCF","System Call Filtering",{"name":108},{"id":110,"name":111,"tactic":334},{"name":108},{"id":114,"name":115,"tactic":336},{"name":108},{"id":118,"name":119,"tactic":338},{"name":108},{"id":105,"name":106,"tactic":340},{"name":108},{"id":122,"name":123,"tactic":342},{"name":108},{"id":344,"name":345,"tactic":346},"D3-NTF","Network Traffic Filtering",{"name":108},{"id":126,"name":127,"tactic":348},{"name":108},{"id":130,"name":131,"tactic":350},{"name":108},{"id":352,"name":353,"tactic":354},"D3-HBPI","Hardware-based Process Isolation",{"name":108},{"id":356,"name":357,"techniques":358},"CAPEC-293","Traceroute Route Enumeration",[],{"id":360,"name":361,"techniques":362},"CAPEC-294","ICMP Address Mask Request",[],{"id":364,"name":365,"techniques":366},"CAPEC-295","Timestamp Request",[367],{"id":368,"name":369,"tactics":370,"countermeasures":372},"T1124","System Time Discovery",[371],{"id":224,"name":225},[373,375,377,379,381,383],{"id":276,"name":277,"tactic":374},{"name":55},{"id":318,"name":319,"tactic":376},{"name":55},{"id":330,"name":331,"tactic":378},{"name":108},{"id":126,"name":127,"tactic":380},{"name":108},{"id":130,"name":131,"tactic":382},{"name":108},{"id":352,"name":353,"tactic":384},{"name":108},{"id":386,"name":387,"techniques":388},"CAPEC-296","ICMP Information Request",[],{"id":390,"name":391,"techniques":392},"CAPEC-297","TCP ACK Ping",[],{"id":394,"name":395,"techniques":396},"CAPEC-298","UDP Ping",[],{"id":398,"name":399,"techniques":400},"CAPEC-299","TCP SYN Ping",[],{"id":402,"name":403,"techniques":404},"CAPEC-300","Port Scanning",[405],{"id":406,"name":407,"tactics":408,"countermeasures":410},"T1046","Network Service Discovery",[409],{"id":224,"name":225},[],{"id":412,"name":413,"techniques":414},"CAPEC-301","TCP Connect Scan",[],{"id":416,"name":417,"techniques":418},"CAPEC-302","TCP FIN Scan",[],{"id":420,"name":421,"techniques":422},"CAPEC-303","TCP Xmas Scan",[],{"id":424,"name":425,"techniques":426},"CAPEC-304","TCP Null Scan",[],{"id":428,"name":429,"techniques":430},"CAPEC-305","TCP ACK Scan",[],{"id":432,"name":433,"techniques":434},"CAPEC-306","TCP Window Scan",[],{"id":436,"name":437,"techniques":438},"CAPEC-307","TCP RPC Scan",[],{"id":440,"name":441,"techniques":442},"CAPEC-308","UDP Scan",[],{"id":444,"name":445,"techniques":446},"CAPEC-309","Network Topology Mapping",[447,491,501],{"id":448,"name":449,"tactics":450,"countermeasures":452},"T1016","System Network Configuration Discovery",[451],{"id":224,"name":225},[453,455,457,459,461,463,465,467,469,471,473,475,477,479,481,483,485,487,489],{"id":52,"name":53,"tactic":454},{"name":55},{"id":57,"name":58,"tactic":456},{"name":55},{"id":61,"name":62,"tactic":458},{"name":55},{"id":65,"name":66,"tactic":460},{"name":55},{"id":276,"name":277,"tactic":462},{"name":55},{"id":318,"name":319,"tactic":464},{"name":55},{"id":69,"name":70,"tactic":466},{"name":72},{"id":78,"name":79,"tactic":468},{"name":81},{"id":92,"name":93,"tactic":470},{"name":86},{"id":101,"name":102,"tactic":472},{"name":99},{"id":110,"name":111,"tactic":474},{"name":108},{"id":114,"name":115,"tactic":476},{"name":108},{"id":118,"name":119,"tactic":478},{"name":108},{"id":105,"name":106,"tactic":480},{"name":108},{"id":122,"name":123,"tactic":482},{"name":108},{"id":126,"name":127,"tactic":484},{"name":108},{"id":130,"name":131,"tactic":486},{"name":108},{"id":330,"name":331,"tactic":488},{"name":108},{"id":352,"name":353,"tactic":490},{"name":108},{"id":492,"name":493,"tactics":494,"countermeasures":496},"T1049","System Network Connections Discovery",[495],{"id":224,"name":225},[497,499],{"id":276,"name":277,"tactic":498},{"name":55},{"id":330,"name":331,"tactic":500},{"name":108},{"id":502,"name":503,"tactics":504,"countermeasures":506},"T1590","Gather Victim Network Information",[505],{"id":232,"name":233},[],{"id":508,"name":509,"techniques":510},"CAPEC-310","Scanning for Vulnerable Software",[],{"id":512,"name":513,"techniques":514},"CAPEC-312","Active OS Fingerprinting",[515],{"id":516,"name":517,"tactics":518,"countermeasures":520},"T1082","System Information Discovery",[519],{"id":224,"name":225},[521,523,525,529,531,533,535],{"id":276,"name":277,"tactic":522},{"name":55},{"id":318,"name":319,"tactic":524},{"name":55},{"id":526,"name":527,"tactic":528},"D3-DE","Decoy Environment",{"name":81},{"id":330,"name":331,"tactic":530},{"name":108},{"id":126,"name":127,"tactic":532},{"name":108},{"id":130,"name":131,"tactic":534},{"name":108},{"id":352,"name":353,"tactic":536},{"name":108},{"id":538,"name":539,"techniques":540},"CAPEC-313","Passive OS Fingerprinting",[541],{"id":516,"name":517,"tactics":542,"countermeasures":544},[543],{"id":224,"name":225},[545,547,549,551,553,555,557],{"id":276,"name":277,"tactic":546},{"name":55},{"id":318,"name":319,"tactic":548},{"name":55},{"id":526,"name":527,"tactic":550},{"name":81},{"id":330,"name":331,"tactic":552},{"name":108},{"id":126,"name":127,"tactic":554},{"name":108},{"id":130,"name":131,"tactic":556},{"name":108},{"id":352,"name":353,"tactic":558},{"name":108},{"id":560,"name":561,"techniques":562},"CAPEC-317","IP ID Sequencing Probe",[],{"id":564,"name":565,"techniques":566},"CAPEC-318","IP 'ID' Echoed Byte-Order Probe",[],{"id":568,"name":569,"techniques":570},"CAPEC-319","IP (DF) 'Don't Fragment Bit' Echoing Probe",[],{"id":572,"name":573,"techniques":574},"CAPEC-320","TCP Timestamp Probe",[],{"id":576,"name":577,"techniques":578},"CAPEC-321","TCP Sequence Number Probe",[],{"id":580,"name":581,"techniques":582},"CAPEC-322","TCP (ISN) Greatest Common Divisor Probe",[],{"id":584,"name":585,"techniques":586},"CAPEC-323","TCP (ISN) Counter Rate Probe",[],{"id":588,"name":589,"techniques":590},"CAPEC-324","TCP (ISN) Sequence Predictability Probe",[],{"id":592,"name":593,"techniques":594},"CAPEC-325","TCP Congestion Control Flag (ECN) Probe",[],{"id":596,"name":597,"techniques":598},"CAPEC-326","TCP Initial Window Size Probe",[],{"id":600,"name":601,"techniques":602},"CAPEC-327","TCP Options Probe",[],{"id":604,"name":605,"techniques":606},"CAPEC-328","TCP 'RST' Flag Checksum Probe",[],{"id":608,"name":609,"techniques":610},"CAPEC-329","ICMP Error Message Quoting Probe",[],{"id":612,"name":613,"techniques":614},"CAPEC-330","ICMP Error Message Echoing Integrity Probe",[],{"id":616,"name":617,"techniques":618},"CAPEC-472","Browser Fingerprinting",[],{"id":620,"name":621,"techniques":622},"CAPEC-497","File Discovery",[623],{"id":624,"name":625,"tactics":626,"countermeasures":628},"T1083","File and Directory Discovery",[627],{"id":224,"name":225},[629,631,633,635,637,639,641,643,645,647,649],{"id":52,"name":53,"tactic":630},{"name":55},{"id":57,"name":58,"tactic":632},{"name":55},{"id":69,"name":70,"tactic":634},{"name":72},{"id":78,"name":79,"tactic":636},{"name":81},{"id":92,"name":93,"tactic":638},{"name":86},{"id":101,"name":102,"tactic":640},{"name":99},{"id":114,"name":115,"tactic":642},{"name":108},{"id":110,"name":111,"tactic":644},{"name":108},{"id":118,"name":119,"tactic":646},{"name":108},{"id":105,"name":106,"tactic":648},{"name":108},{"id":122,"name":123,"tactic":650},{"name":108},{"id":652,"name":653,"techniques":654},"CAPEC-508","Shoulder Surfing",[],{"id":656,"name":657,"techniques":658},"CAPEC-573","Process Footprinting",[659],{"id":660,"name":661,"tactics":662,"countermeasures":664},"T1057","Process Discovery",[663],{"id":224,"name":225},[665,667,669,671,673,675],{"id":276,"name":277,"tactic":666},{"name":55},{"id":318,"name":319,"tactic":668},{"name":55},{"id":330,"name":331,"tactic":670},{"name":108},{"id":126,"name":127,"tactic":672},{"name":108},{"id":130,"name":131,"tactic":674},{"name":108},{"id":352,"name":353,"tactic":676},{"name":108},{"id":678,"name":679,"techniques":680},"CAPEC-574","Services Footprinting",[681],{"id":682,"name":683,"tactics":684,"countermeasures":686},"T1007","System Service Discovery",[685],{"id":224,"name":225},[687,689,691,693,695,697],{"id":276,"name":277,"tactic":688},{"name":55},{"id":318,"name":319,"tactic":690},{"name":55},{"id":330,"name":331,"tactic":692},{"name":108},{"id":126,"name":127,"tactic":694},{"name":108},{"id":130,"name":131,"tactic":696},{"name":108},{"id":352,"name":353,"tactic":698},{"name":108},{"id":700,"name":701,"techniques":702},"CAPEC-575","Account Footprinting",[703],{"id":704,"name":705,"tactics":706,"countermeasures":708},"T1087","Account Discovery",[707],{"id":224,"name":225},[709,713,717,721,725,729,733,737,741],{"id":710,"name":711,"tactic":712},"D3-AM","Access Modeling",{"name":50},{"id":714,"name":715,"tactic":716},"D3-LAM","Local Account Monitoring",{"name":55},{"id":718,"name":719,"tactic":720},"D3-DAM","Domain Account Monitoring",{"name":55},{"id":722,"name":723,"tactic":724},"D3-AL","Account Locking",{"name":72},{"id":726,"name":727,"tactic":728},"D3-AA","Agent Authentication",{"name":86},{"id":730,"name":731,"tactic":732},"D3-CDP","Change Default Password",{"name":86},{"id":734,"name":735,"tactic":736},"D3-ULA","Unlock Account",{"name":99},{"id":738,"name":739,"tactic":740},"D3-RUAA","Restore User Account Access",{"name":99},{"id":742,"name":743,"tactic":744},"D3-UAP","User Account Permissions",{"name":108},{"id":746,"name":747,"techniques":748},"CAPEC-576","Group Permission Footprinting",[749,755],{"id":750,"name":751,"tactics":752,"countermeasures":754},"T1069","Permission Groups Discovery",[753],{"id":224,"name":225},[],{"id":756,"name":757,"tactics":758,"countermeasures":760},"T1615","Group Policy Discovery",[759],{"id":224,"name":225},[761,763,767,769],{"id":47,"name":48,"tactic":762},{"name":50},{"id":764,"name":765,"tactic":766},"D3-NTPM","Network Traffic Policy Mapping",{"name":50},{"id":710,"name":711,"tactic":768},{"name":50},{"id":96,"name":97,"tactic":770},{"name":99},{"id":772,"name":773,"techniques":774},"CAPEC-577","Owner Footprinting",[775],{"id":776,"name":777,"tactics":778,"countermeasures":780},"T1033","System Owner/User Discovery",[779],{"id":224,"name":225},[781,785,787,789,791,795,799,801,803,807,811,815,819,821,823,827,831,833,837,839,841,843,845,847,849,853,855,859,863,867,869],{"id":782,"name":783,"tactic":784},"D3-DI","Data Inventory",{"name":50},{"id":52,"name":53,"tactic":786},{"name":55},{"id":57,"name":58,"tactic":788},{"name":55},{"id":276,"name":277,"tactic":790},{"name":55},{"id":792,"name":793,"tactic":794},"D3-PLA","Process Lineage Analysis",{"name":55},{"id":796,"name":797,"tactic":798},"D3-PSMD","Process Self-Modification Detection",{"name":55},{"id":318,"name":319,"tactic":800},{"name":55},{"id":69,"name":70,"tactic":802},{"name":72},{"id":804,"name":805,"tactic":806},"D3-PT","Process Termination",{"name":72},{"id":808,"name":809,"tactic":810},"D3-PS","Process Suspension",{"name":72},{"id":812,"name":813,"tactic":814},"D3-HR","Host Reboot",{"name":72},{"id":816,"name":817,"tactic":818},"D3-HS","Host Shutdown",{"name":72},{"id":78,"name":79,"tactic":820},{"name":81},{"id":92,"name":93,"tactic":822},{"name":86},{"id":824,"name":825,"tactic":826},"D3-PSEP","Process Segment Execution Prevention",{"name":86},{"id":828,"name":829,"tactic":830},"D3-SAOR","Segment Address Offset Randomization",{"name":86},{"id":101,"name":102,"tactic":832},{"name":99},{"id":834,"name":835,"tactic":836},"D3-RD","Restore Database",{"name":99},{"id":110,"name":111,"tactic":838},{"name":108},{"id":114,"name":115,"tactic":840},{"name":108},{"id":118,"name":119,"tactic":842},{"name":108},{"id":105,"name":106,"tactic":844},{"name":108},{"id":122,"name":123,"tactic":846},{"name":108},{"id":330,"name":331,"tactic":848},{"name":108},{"id":850,"name":851,"tactic":852},"D3-KBPI","Kernel-based Process Isolation",{"name":108},{"id":352,"name":353,"tactic":854},{"name":108},{"id":856,"name":857,"tactic":858},"D3-ABPI","Application-based Process Isolation",{"name":108},{"id":860,"name":861,"tactic":862},"D3-WSAM","Web Session Access Mediation",{"name":108},{"id":864,"name":865,"tactic":866},"D3-DTP","Domain Trust Policy",{"name":108},{"id":126,"name":127,"tactic":868},{"name":108},{"id":130,"name":131,"tactic":870},{"name":108},{"id":872,"name":873,"techniques":874},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":876,"name":877,"techniques":878},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[879,931],{"id":880,"name":881,"tactics":882,"countermeasures":886},"T1134.001","Token Impersonation/Theft",[883,884,885],{"id":40,"name":41},{"id":43,"name":44},{"id":141,"name":142},[887,891,895,899,903,907,911,915,919,923,927],{"id":888,"name":889,"tactic":890},"D3-CCSA","Credential Compromise Scope Analysis",{"name":55},{"id":892,"name":893,"tactic":894},"D3-CR","Credential Revocation",{"name":72},{"id":896,"name":897,"tactic":898},"D3-ANCI","Authentication Cache Invalidation",{"name":72},{"id":900,"name":901,"tactic":902},"D3-DUC","Decoy User Credential",{"name":81},{"id":904,"name":905,"tactic":906},"D3-CH","Credential Hardening",{"name":86},{"id":908,"name":909,"tactic":910},"D3-MFA","Multi-factor Authentication",{"name":86},{"id":912,"name":913,"tactic":914},"D3-CRO","Credential Rotation",{"name":86},{"id":916,"name":917,"tactic":918},"D3-TB","Token Binding",{"name":86},{"id":920,"name":921,"tactic":922},"D3-TBA","Token-based Authentication",{"name":86},{"id":924,"name":925,"tactic":926},"D3-RIC","Reissue Credential",{"name":99},{"id":928,"name":929,"tactic":930},"D3-CTS","Credential Transmission Scoping",{"name":108},{"id":932,"name":933,"tactics":934,"countermeasures":939},"T1550.004","Web Session Cookie",[935,936],{"id":40,"name":41},{"id":937,"name":938},"TA0109","Lateral Movement",[940,942,944,946,948,950,952,954,956,958,960,962,964,966,968,970,972,974,976,978,980,982,984,986,988,990,992,994,996,998],{"id":286,"name":287,"tactic":941},{"name":55},{"id":290,"name":291,"tactic":943},{"name":55},{"id":294,"name":295,"tactic":945},{"name":55},{"id":298,"name":299,"tactic":947},{"name":55},{"id":302,"name":303,"tactic":949},{"name":55},{"id":306,"name":307,"tactic":951},{"name":55},{"id":310,"name":311,"tactic":953},{"name":55},{"id":314,"name":315,"tactic":955},{"name":55},{"id":792,"name":793,"tactic":957},{"name":55},{"id":796,"name":797,"tactic":959},{"name":55},{"id":318,"name":319,"tactic":961},{"name":55},{"id":888,"name":889,"tactic":963},{"name":55},{"id":804,"name":805,"tactic":965},{"name":72},{"id":808,"name":809,"tactic":967},{"name":72},{"id":812,"name":813,"tactic":969},{"name":72},{"id":816,"name":817,"tactic":971},{"name":72},{"id":892,"name":893,"tactic":973},{"name":72},{"id":896,"name":897,"tactic":975},{"name":72},{"id":900,"name":901,"tactic":977},{"name":81},{"id":904,"name":905,"tactic":979},{"name":86},{"id":908,"name":909,"tactic":981},{"name":86},{"id":912,"name":913,"tactic":983},{"name":86},{"id":924,"name":925,"tactic":985},{"name":99},{"id":344,"name":345,"tactic":987},{"name":108},{"id":850,"name":851,"tactic":989},{"name":108},{"id":330,"name":331,"tactic":991},{"name":108},{"id":352,"name":353,"tactic":993},{"name":108},{"id":856,"name":857,"tactic":995},{"name":108},{"id":860,"name":861,"tactic":997},{"name":108},{"id":928,"name":929,"tactic":999},{"name":108},{"id":1001,"name":1002,"techniques":1003},"CAPEC-616","Establish Rogue Location",[1004],{"id":1005,"name":1006,"tactics":1007,"countermeasures":1010},"T1036.005","Match Legitimate Resource Name or Location",[1008,1009],{"id":40,"name":41},{"id":43,"name":44},[1011,1013,1015,1017,1019,1021,1023,1025,1027,1029,1031,1033,1035],{"id":276,"name":277,"tactic":1012},{"name":55},{"id":52,"name":53,"tactic":1014},{"name":55},{"id":57,"name":58,"tactic":1016},{"name":55},{"id":69,"name":70,"tactic":1018},{"name":72},{"id":78,"name":79,"tactic":1020},{"name":81},{"id":92,"name":93,"tactic":1022},{"name":86},{"id":101,"name":102,"tactic":1024},{"name":99},{"id":330,"name":331,"tactic":1026},{"name":108},{"id":110,"name":111,"tactic":1028},{"name":108},{"id":114,"name":115,"tactic":1030},{"name":108},{"id":118,"name":119,"tactic":1032},{"name":108},{"id":105,"name":106,"tactic":1034},{"name":108},{"id":122,"name":123,"tactic":1036},{"name":108},{"id":1038,"name":1039,"techniques":1040},"CAPEC-643","Identify Shared Files/Directories on System",[1041],{"id":1042,"name":1043,"tactics":1044,"countermeasures":1046},"T1135","Network Share Discovery",[1045],{"id":224,"name":225},[],{"id":1048,"name":1049,"techniques":1050},"CAPEC-646","Peripheral Footprinting",[1051],{"id":1052,"name":1053,"tactics":1054,"countermeasures":1056},"T1120","Peripheral Device Discovery",[1055],{"id":224,"name":225},[],{"id":1058,"name":1059,"techniques":1060},"CAPEC-651","Eavesdropping",[1061],{"id":1062,"name":1063,"tactics":1064,"countermeasures":1068},"T1111","Multi-Factor Authentication Interception",[1065],{"id":1066,"name":1067},"TA0031","Credential Access",[1069,1073],{"id":1070,"name":1071,"tactic":1072},"D3-HCI","Hardware Component Inventory",{"name":50},{"id":1074,"name":1075,"tactic":1076},"D3-RH","Radiation Hardening",{"name":86},{"id":1078,"name":1079,"techniques":1080},"CAPEC-79","Using Slashes in Alternate Encoding",[],{"_key":1082,"id":1082,"name":1083,"description":1084,"type":22,"status":1085,"abstraction":1086,"likelihood_of_exploit":9,"capec":1087},"CWE-551","Incorrect Behavior Order: Authorization Before Parsing and Canonicalization","If a web server does not fully parse requested URLs before it examines them for authorization, it may be possible for an attacker to bypass authorization protection.","Incomplete","Base",[],[1089,1098,1111],{"_key":1090,"name":1091,"source":1092,"url":1093,"maturity":1094,"reliability_score":1095,"verified":1096,"type":9,"platforms":1097,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_29E144E0B26B852F","Exploit Reference (packetstormsecurity.com)","reference","http://packetstormsecurity.com/files/164590/Jetty-9.4.37.v20210219-Information-Disclosure.html","unknown",0.2,false,[],{"_key":1099,"name":1100,"source":1101,"url":1102,"maturity":1103,"reliability_score":1104,"verified":1096,"type":9,"platforms":1105,"requires_auth":9,"exploitdb":1107,"metasploit":9},"50438","Jetty 9.4.37.v20210219 - Information Disclosure","exploit-database","https://www.exploit-db.com/exploits/50438","poc",0.5,[1106],"java",{"verified":1096,"type":1108,"platform":1106,"file":1109,"codes":1110},"webapps","exploits/java/webapps/50438.txt",[7],{"_key":1112,"name":1113,"source":1114,"url":1115,"maturity":1103,"reliability_score":1104,"verified":1096,"type":1116,"platforms":1117,"requires_auth":1096,"exploitdb":9,"metasploit":1118},"MSF_AUXILIARY_GATHER_JETTY_WEB_INF_DISCLOSURE","Jetty WEB-INF File Disclosure","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/jetty_web_inf_disclosure.rb","remote",[],{"fullname":1119,"rank":1120,"rank_name":1121,"post_auth":1096,"check":1122,"notes":1123},"auxiliary/gather/jetty_web_inf_disclosure",300,"normal",true,{"Stability":1124,"SideEffects":1126,"Reliability":1128},[1125],"crash-safe",[1127],"ioc-in-logs",[],[1130],"GHSA-v7ff-8wcx-gmc5",[],[1133,1135,1137,1139,1141],{"_key":1134},"UBUNTU-CVE-2021-28164",{"_key":1136},"SUSE-SU-2021:2005-1",{"_key":1138},"OPENSUSE-SU-2021:2005-1",{"_key":1140},"DEBIAN-CVE-2021-28164",{"_key":1142},"RHSA-2021:1509",[],[1145,1146],{"_key":1136},{"_key":1138},"2021-04-01T14:20:14.000Z","2024-08-03T21:40:12.093Z","Modified",{"cisa_kev":1096,"cisa_ransomware":1096,"cisa_vendor":9,"epss_severity":1151,"epss_score":1152,"severity":1153,"severity_score":1154,"severity_version":1155,"severity_source":1156,"severity_vector":1157,"severity_status":1149},"critical",0.93485,"medium",5.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",[1159,1169,1175,1179,1183,1187,1191,1195,1199,1203,1207,1211,1215,1219,1223,1227,1231,1235,1239,1243,1247,1253,1257,1261,1266,1271,1276,1280,1284,1288,1292,1296,1300,1304,1308,1312,1316,1320,1324,1328,1332,1336,1340,1344,1348,1352,1356],{"url":1160,"sources":1161,"tags":1164},"https://github.com/eclipse/jetty.project/security/advisories/GHSA-v7ff-8wcx-gmc5",[1156,1162,1163],"nvd","osv_maven",[1165,1166,1167,1168],"X Refsource CONFIRM","Mitigation","Third Party Advisory","WEB",{"url":1170,"sources":1171,"tags":1172},"https://lists.apache.org/thread.html/r780c3c210a05c5bf7b4671303f46afc3fe56758e92864e1a5f0590d0%40%3Cjira.kafka.apache.org%3E",[1156,1162],[1173,1174],"Mailing List","X Refsource MLIST",{"url":1176,"sources":1177,"tags":1178},"https://lists.apache.org/thread.html/r5b3693da7ecb8a75c0e930b4ca26a5f97aa0207d9dae4aa8cc65fe6b%40%3Cissues.ignite.apache.org%3E",[1156,1162],[1173,1174],{"url":1180,"sources":1181,"tags":1182},"https://lists.apache.org/thread.html/rd7c8fb305a8637480dc943ba08424c8992dccad018cd1405eb2afe0e%40%3Cdev.ignite.apache.org%3E",[1156,1162],[1173,1174],{"url":1184,"sources":1185,"tags":1186},"https://lists.apache.org/thread.html/r0841b06b48324cfc81325de3c05a92e53f997185f9d71ff47734d961%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1188,"sources":1189,"tags":1190},"https://lists.apache.org/thread.html/r6ac9e263129328c0db9940d72b4a6062e703c58918dd34bd22cdf8dd%40%3Cissues.ignite.apache.org%3E",[1156,1162],[1173,1174],{"url":1192,"sources":1193,"tags":1194},"https://lists.apache.org/thread.html/r4a66bfbf62281e31bc1345ebecbfd96f35199eecd77bfe4e903e906f%40%3Cissues.ignite.apache.org%3E",[1156,1162],[1173,1174],{"url":1196,"sources":1197,"tags":1198},"https://lists.apache.org/thread.html/r4b1fef117bccc7f5fd4c45fd2cabc26838df823fe5ca94bc42a4fd46%40%3Cissues.ignite.apache.org%3E",[1156,1162],[1173,1174],{"url":1200,"sources":1201,"tags":1202},"https://lists.apache.org/thread.html/r111f1ce28b133a8090ca4f809a1bdf18a777426fc058dc3a16c39c66%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1204,"sources":1205,"tags":1206},"https://lists.apache.org/thread.html/r2ea2f0541121f17e470a0184843720046c59d4bde6d42bf5ca6fad81%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1208,"sources":1209,"tags":1210},"https://lists.apache.org/thread.html/r9974f64723875052e02787b2a5eda689ac5247c71b827d455e5dc9a6%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1212,"sources":1213,"tags":1214},"https://lists.apache.org/thread.html/rbc075a4ac85e7a8e47420b7383f16ffa0af3b792b8423584735f369f%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1216,"sources":1217,"tags":1218},"https://security.netapp.com/advisory/ntap-20210611-0006/",[1156,1162],[1165,1167],{"url":1220,"sources":1221,"tags":1222},"https://lists.apache.org/thread.html/r7dd079fa0ac6f47ba1ad0af98d7d0276547b8a4e005f034fb1016951%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1224,"sources":1225,"tags":1226},"https://lists.apache.org/thread.html/r90e7b4c42a96d74c219e448bee6a329ab0cd3205c44b63471d96c3ab%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1228,"sources":1229,"tags":1230},"https://lists.apache.org/thread.html/r763840320a80e515331cbc1e613fa93f25faf62e991974171a325c82%40%3Cdev.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1232,"sources":1233,"tags":1234},"https://lists.apache.org/thread.html/r2a3ea27cca2ac7352d392b023b72e824387bc9ff16ba245ec663bdc6%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1236,"sources":1237,"tags":1238},"https://lists.apache.org/thread.html/r8e6c116628c1277c3cf132012a66c46a0863fa2a3037c0707d4640d4%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1240,"sources":1241,"tags":1242},"https://lists.apache.org/thread.html/rd0471252aeb3384c3cfa6d131374646d4641b80dd313e7b476c47a9c%40%3Cissues.solr.apache.org%3E",[1156,1162],[1173,1174],{"url":1244,"sources":1245,"tags":1246},"https://lists.apache.org/thread.html/rcea249eb7a0d243f21696e4985de33f3780399bf7b31ea1f6d489b8b%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1248,"sources":1249,"tags":1250},"https://www.oracle.com/security-alerts/cpuoct2021.html",[1156,1162,1163],[1251,1252,1167,1168],"X Refsource MISC","Patch",{"url":1254,"sources":1255,"tags":1256},"https://lists.apache.org/thread.html/r3c55b0baa4dc38958ae147b2f216e212605f1071297f845e14477d36%40%3Cissues.zookeeper.apache.org%3E",[1156,1162],[1173,1174],{"url":1258,"sources":1259,"tags":1260},"https://www.oracle.com/security-alerts/cpujan2022.html",[1156,1162,1163],[1251,1252,1167,1168],{"url":1093,"sources":1262,"tags":1263},[1156,1162,1163],[1251,1264,1167,1265,1168],"Exploit","VDB Entry",{"url":1267,"sources":1268,"tags":1269},"https://www.oracle.com/security-alerts/cpuapr2022.html",[1156,1162,1163],[1251,1270,1167,1168],"Not Applicable",{"url":1272,"sources":1273,"tags":1274},"https://nvd.nist.gov/vuln/detail/CVE-2021-28164",[1163],[1275],"Advisory",{"url":1277,"sources":1278,"tags":1279},"https://security.netapp.com/advisory/ntap-20210611-0006",[1163],[1168],{"url":1281,"sources":1282,"tags":1283},"https://lists.apache.org/thread.html/rd7c8fb305a8637480dc943ba08424c8992dccad018cd1405eb2afe0e@%3Cdev.ignite.apache.org%3E",[1163],[1168],{"url":1285,"sources":1286,"tags":1287},"https://lists.apache.org/thread.html/rd0471252aeb3384c3cfa6d131374646d4641b80dd313e7b476c47a9c@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1289,"sources":1290,"tags":1291},"https://lists.apache.org/thread.html/rcea249eb7a0d243f21696e4985de33f3780399bf7b31ea1f6d489b8b@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1293,"sources":1294,"tags":1295},"https://lists.apache.org/thread.html/rbc075a4ac85e7a8e47420b7383f16ffa0af3b792b8423584735f369f@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1297,"sources":1298,"tags":1299},"https://lists.apache.org/thread.html/r9974f64723875052e02787b2a5eda689ac5247c71b827d455e5dc9a6@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1301,"sources":1302,"tags":1303},"https://lists.apache.org/thread.html/r90e7b4c42a96d74c219e448bee6a329ab0cd3205c44b63471d96c3ab@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1305,"sources":1306,"tags":1307},"https://lists.apache.org/thread.html/r8e6c116628c1277c3cf132012a66c46a0863fa2a3037c0707d4640d4@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1309,"sources":1310,"tags":1311},"https://lists.apache.org/thread.html/r7dd079fa0ac6f47ba1ad0af98d7d0276547b8a4e005f034fb1016951@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1313,"sources":1314,"tags":1315},"https://lists.apache.org/thread.html/r780c3c210a05c5bf7b4671303f46afc3fe56758e92864e1a5f0590d0@%3Cjira.kafka.apache.org%3E",[1163],[1168],{"url":1317,"sources":1318,"tags":1319},"https://lists.apache.org/thread.html/r763840320a80e515331cbc1e613fa93f25faf62e991974171a325c82@%3Cdev.zookeeper.apache.org%3E",[1163],[1168],{"url":1321,"sources":1322,"tags":1323},"https://lists.apache.org/thread.html/r6ac9e263129328c0db9940d72b4a6062e703c58918dd34bd22cdf8dd@%3Cissues.ignite.apache.org%3E",[1163],[1168],{"url":1325,"sources":1326,"tags":1327},"https://lists.apache.org/thread.html/r5b3693da7ecb8a75c0e930b4ca26a5f97aa0207d9dae4aa8cc65fe6b@%3Cissues.ignite.apache.org%3E",[1163],[1168],{"url":1329,"sources":1330,"tags":1331},"https://lists.apache.org/thread.html/r4b1fef117bccc7f5fd4c45fd2cabc26838df823fe5ca94bc42a4fd46@%3Cissues.ignite.apache.org%3E",[1163],[1168],{"url":1333,"sources":1334,"tags":1335},"https://lists.apache.org/thread.html/r4a66bfbf62281e31bc1345ebecbfd96f35199eecd77bfe4e903e906f@%3Cissues.ignite.apache.org%3E",[1163],[1168],{"url":1337,"sources":1338,"tags":1339},"https://lists.apache.org/thread.html/r3c55b0baa4dc38958ae147b2f216e212605f1071297f845e14477d36@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1341,"sources":1342,"tags":1343},"https://lists.apache.org/thread.html/r2ea2f0541121f17e470a0184843720046c59d4bde6d42bf5ca6fad81@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1345,"sources":1346,"tags":1347},"https://lists.apache.org/thread.html/r2a3ea27cca2ac7352d392b023b72e824387bc9ff16ba245ec663bdc6@%3Cissues.zookeeper.apache.org%3E",[1163],[1168],{"url":1349,"sources":1350,"tags":1351},"https://lists.apache.org/thread.html/r111f1ce28b133a8090ca4f809a1bdf18a777426fc058dc3a16c39c66@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1353,"sources":1354,"tags":1355},"https://lists.apache.org/thread.html/r0841b06b48324cfc81325de3c05a92e53f997185f9d71ff47734d961@%3Cissues.solr.apache.org%3E",[1163],[1168],{"url":1357,"sources":1358,"tags":1359},"https://github.com/eclipse/jetty.project",[1163],[1360],"PACKAGE",[],{"date":1363,"score":1152,"percentile":1364},"2026-06-04",0.99831,[1366,1369,1372,1374,1376,1378,1380,1382,1384,1386,1388,1390,1392,1394,1396,1400,1402,1405,1407,1410,1412,1415,1417,1419,1421,1423,1425,1427,1431,1433,1436,1438,1440,1442,1444,1446,1448,1450,1452,1454,1456,1458,1460,1462,1464,1466,1468,1471,1473,1475,1477,1479,1481,1483,1487,1489,1491,1493,1495,1497,1499,1501,1503,1505,1507,1509,1511,1513,1515,1517,1519,1521,1523,1525,1527,1529,1531,1533,1535,1537,1539,1541,1543,1545,1547,1549,1551,1553,1555,1557],{"date":1367,"score":1152,"percentile":1368},"2025-11-04",0.99814,{"date":1370,"score":1152,"percentile":1371},"2025-11-05",0.99813,{"date":1373,"score":1152,"percentile":1371},"2025-11-06",{"date":1375,"score":1152,"percentile":1368},"2025-11-07",{"date":1377,"score":1152,"percentile":1371},"2025-11-08",{"date":1379,"score":1152,"percentile":1371},"2025-11-09",{"date":1381,"score":1152,"percentile":1371},"2025-11-10",{"date":1383,"score":1152,"percentile":1371},"2025-11-11",{"date":1385,"score":1152,"percentile":1371},"2025-11-12",{"date":1387,"score":1152,"percentile":1371},"2025-11-13",{"date":1389,"score":1152,"percentile":1371},"2025-11-14",{"date":1391,"score":1152,"percentile":1371},"2025-11-15",{"date":1393,"score":1152,"percentile":1368},"2025-11-16",{"date":1395,"score":1152,"percentile":1371},"2025-11-17",{"date":1397,"score":1398,"percentile":1399},"2025-11-18",0.43803,0.97374,{"date":1401,"score":1398,"percentile":1399},"2025-11-19",{"date":1403,"score":1398,"percentile":1404},"2025-11-20",0.97376,{"date":1406,"score":1152,"percentile":1371},"2025-11-21",{"date":1408,"score":1152,"percentile":1409},"2025-11-22",0.99812,{"date":1411,"score":1152,"percentile":1409},"2025-11-23",{"date":1413,"score":1152,"percentile":1414},"2025-11-24",0.99811,{"date":1416,"score":1152,"percentile":1414},"2025-11-25",{"date":1418,"score":1152,"percentile":1409},"2025-11-26",{"date":1420,"score":1152,"percentile":1409},"2025-11-27",{"date":1422,"score":1152,"percentile":1409},"2025-11-28",{"date":1424,"score":1152,"percentile":1409},"2025-11-29",{"date":1426,"score":1152,"percentile":1409},"2025-11-30",{"date":1428,"score":1429,"percentile":1430},"2025-12-01",0.93374,0.99804,{"date":1432,"score":1429,"percentile":1430},"2025-12-02",{"date":1434,"score":1429,"percentile":1435},"2025-12-03",0.99803,{"date":1437,"score":1152,"percentile":1414},"2025-12-04",{"date":1439,"score":1152,"percentile":1414},"2025-12-05",{"date":1441,"score":1152,"percentile":1414},"2025-12-06",{"date":1443,"score":1152,"percentile":1414},"2025-12-07",{"date":1445,"score":1152,"percentile":1414},"2025-12-08",{"date":1447,"score":1152,"percentile":1414},"2025-12-09",{"date":1449,"score":1152,"percentile":1414},"2025-12-10",{"date":1451,"score":1152,"percentile":1414},"2025-12-11",{"date":1453,"score":1152,"percentile":1414},"2025-12-12",{"date":1455,"score":1152,"percentile":1414},"2025-12-13",{"date":1457,"score":1152,"percentile":1414},"2025-12-14",{"date":1459,"score":1152,"percentile":1414},"2025-12-15",{"date":1461,"score":1152,"percentile":1414},"2025-12-16",{"date":1463,"score":1152,"percentile":1409},"2025-12-17",{"date":1465,"score":1152,"percentile":1414},"2025-12-18",{"date":1467,"score":1152,"percentile":1414},"2025-12-19",{"date":1469,"score":1152,"percentile":1470},"2025-12-20",0.9981,{"date":1472,"score":1152,"percentile":1414},"2025-12-21",{"date":1474,"score":1152,"percentile":1414},"2025-12-22",{"date":1476,"score":1152,"percentile":1414},"2025-12-23",{"date":1478,"score":1152,"percentile":1414},"2025-12-24",{"date":1480,"score":1152,"percentile":1470},"2025-12-25",{"date":1482,"score":1152,"percentile":1470},"2025-12-26",{"date":1484,"score":1485,"percentile":1486},"2025-12-27",0.93449,0.99806,{"date":1488,"score":1152,"percentile":1470},"2025-12-28",{"date":1490,"score":1152,"percentile":1470},"2025-12-29",{"date":1492,"score":1152,"percentile":1470},"2025-12-30",{"date":1494,"score":1152,"percentile":1470},"2025-12-31",{"date":1496,"score":1429,"percentile":1435},"2026-01-01",{"date":1498,"score":1429,"percentile":1435},"2026-01-02",{"date":1500,"score":1429,"percentile":1435},"2026-01-03",{"date":1502,"score":1152,"percentile":1414},"2026-01-04",{"date":1504,"score":1152,"percentile":1414},"2026-01-05",{"date":1506,"score":1152,"percentile":1414},"2026-01-06",{"date":1508,"score":1152,"percentile":1414},"2026-01-07",{"date":1510,"score":1152,"percentile":1414},"2026-01-08",{"date":1512,"score":1152,"percentile":1414},"2026-01-09",{"date":1514,"score":1152,"percentile":1414},"2026-01-10",{"date":1516,"score":1152,"percentile":1414},"2026-01-11",{"date":1518,"score":1152,"percentile":1409},"2026-01-12",{"date":1520,"score":1152,"percentile":1409},"2026-01-13",{"date":1522,"score":1152,"percentile":1409},"2026-01-14",{"date":1524,"score":1152,"percentile":1371},"2026-01-15",{"date":1526,"score":1152,"percentile":1371},"2026-01-16",{"date":1528,"score":1152,"percentile":1371},"2026-01-17",{"date":1530,"score":1152,"percentile":1409},"2026-01-18",{"date":1532,"score":1152,"percentile":1409},"2026-01-19",{"date":1534,"score":1152,"percentile":1409},"2026-01-20",{"date":1536,"score":1152,"percentile":1409},"2026-01-21",{"date":1538,"score":1152,"percentile":1371},"2026-01-22",{"date":1540,"score":1152,"percentile":1371},"2026-01-23",{"date":1542,"score":1152,"percentile":1371},"2026-01-24",{"date":1544,"score":1152,"percentile":1371},"2026-01-25",{"date":1546,"score":1152,"percentile":1371},"2026-01-26",{"date":1548,"score":1152,"percentile":1371},"2026-01-27",{"date":1550,"score":1152,"percentile":1371},"2026-01-28",{"date":1552,"score":1152,"percentile":1368},"2026-01-29",{"date":1554,"score":1152,"percentile":1371},"2026-01-30",{"date":1556,"score":1152,"percentile":1371},"2026-01-31",{"date":1558,"score":1429,"percentile":1486},"2026-02-01",[1560,1565,1571],{"source":1156,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":1561,"cvss_v4_0":9},{"baseScore":1154,"baseSeverity":1562,"vectorString":1157,"impactScore":1563,"exploitabilityScore":1564},"MEDIUM",2.3,10,{"source":1162,"cvss_v2_0":1566,"cvss_v3_0":9,"cvss_v3_1":1570,"cvss_v4_0":9},{"baseScore":1567,"baseSeverity":9,"vectorString":1568,"impactScore":1569,"exploitabilityScore":1564},5,"AV:N/AC:L/Au:N/C:P/I:N/A:N",2.9,{"baseScore":1154,"baseSeverity":1562,"vectorString":1157,"impactScore":1563,"exploitabilityScore":1564},{"source":1163,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":1572,"cvss_v4_0":9},{"baseScore":1154,"baseSeverity":9,"vectorString":1157,"impactScore":1563,"exploitabilityScore":1564},[1574,1584,1598,1605,1610,1618,1623,1628,1633,1637,1642,1649,1654,1659,1666,1674,1680,1688,1695],{"ecosystem":9,"name":1575,"vendor":1576,"product":1575,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1578},"jetty","eclipse","a",[1579,1582],{"version":1580,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.4.37:20210219","cpe",{"version":1583,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.4.38:20210224",{"ecosystem":1585,"name":1586,"vendor":1587,"product":1588,"cpe_part":9,"purl_type":1589,"purl_namespace":1587,"purl_name":1588,"source":9,"versions":1590},"Maven","org.eclipse.jetty:jetty-webapp","org.eclipse.jetty","jetty-webapp","maven",[1591],{"version":1592,"is_range":1122,"range_type":1593,"version_start":1594,"version_start_type":1595,"version_end":1596,"version_end_type":1597,"fixed_in":9},"gte9_4_37_lt9_4_39","ecosystem","9.4.37","including","9.4.39","excluding",{"ecosystem":9,"name":1599,"vendor":1600,"product":1601,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1602},"cloud manager","netapp","cloud_manager",[1603],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":1606,"vendor":1600,"product":1607,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1608},"e-series performance analyzer","e-series_performance_analyzer",[1609],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1611,"vendor":1600,"product":1612,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1613},"e-series santricity os controller","e-series_santricity_os_controller",[1614],{"version":1615,"is_range":1122,"range_type":1581,"version_start":1616,"version_start_type":1595,"version_end":1617,"version_end_type":1595,"fixed_in":9},"gte11.0_lte11.70.1","11.0","11.70.1",{"ecosystem":9,"name":1619,"vendor":1600,"product":1620,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1621},"e-series santricity web services","e-series_santricity_web_services",[1622],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1624,"vendor":1600,"product":1625,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1626},"element plug-in for vcenter server","element_plug-in_for_vcenter_server",[1627],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1629,"vendor":1600,"product":1630,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1631},"santricity cloud connector","santricity_cloud_connector",[1632],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1634,"vendor":1600,"product":1634,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1635},"snapcenter",[1636],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1638,"vendor":1600,"product":1639,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1640},"snapcenter plug-in","snapcenter_plug-in",[1641],{"version":1604,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1643,"vendor":1600,"product":1644,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1645},"storage replication adapter for clustered data ontap","storage_replication_adapter_for_clustered_data_ontap",[1646],{"version":1647,"is_range":1122,"range_type":1581,"version_start":1648,"version_start_type":1595,"version_end":9,"version_end_type":9,"fixed_in":9},"gte9.6","9.6",{"ecosystem":9,"name":1650,"vendor":1600,"product":1651,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1652},"vasa provider for clustered data ontap","vasa_provider_for_clustered_data_ontap",[1653],{"version":1647,"is_range":1122,"range_type":1581,"version_start":1648,"version_start_type":1595,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1655,"vendor":1600,"product":1656,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1657},"virtual storage console","virtual_storage_console",[1658],{"version":1647,"is_range":1122,"range_type":1581,"version_start":1648,"version_start_type":1595,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1660,"vendor":1661,"product":1662,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1663},"autovue for agile product lifecycle management","oracle","autovue_for_agile_product_lifecycle_management",[1664],{"version":1665,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"21.0.2",{"ecosystem":9,"name":1667,"vendor":1661,"product":1668,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1669},"banking apis","banking_apis",[1670,1672],{"version":1671,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.1",{"version":1673,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"21.1",{"ecosystem":9,"name":1675,"vendor":1661,"product":1676,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1677},"banking digital experience","banking_digital_experience",[1678,1679],{"version":1671,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":1673,"is_range":1096,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1681,"vendor":1661,"product":1682,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1683},"communications session route manager","communications_session_route_manager",[1684],{"version":1685,"is_range":1122,"range_type":1581,"version_start":1686,"version_start_type":1595,"version_end":1687,"version_end_type":1595,"fixed_in":9},"gte8.0.0_lte8.2.4","8.0.0","8.2.4",{"ecosystem":9,"name":1689,"vendor":1661,"product":1690,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1691},"siebel core - automation","siebel_core_-_automation",[1692],{"version":1693,"is_range":1122,"range_type":1581,"version_start":9,"version_start_type":9,"version_end":1694,"version_end_type":1595,"fixed_in":9},"lte21.9","21.9",{"ecosystem":9,"name":1696,"vendor":1697,"product":1698,"cpe_part":1577,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1699},"Eclipse Jetty","the eclipse foundation","eclipse jetty",[1700,1704],{"version":1701,"is_range":1122,"range_type":1156,"version_start":1702,"version_start_type":1595,"version_end":1703,"version_end_type":1597,"fixed_in":9},">= 9.4.37.v20210219, \u003C unspecified","9.4.37.v20210219","unspecified",{"version":1705,"is_range":1122,"range_type":1156,"version_start":1703,"version_start_type":1595,"version_end":1706,"version_end_type":1595,"fixed_in":9},">= unspecified, \u003C= 9.4.38.v20210224","9.4.38.v20210224"]