Description
Due to a vulnerability in Jetty's URI normalization, an attacker can access protected resources of the web application.
Remediation
Upgrade to the latest version of Jetty
References
Related Vulnerabilities
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9853)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3628)
WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)
WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.21)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6610)