Synced 17 Jun 2026 06:32 UTC Account

Is Eclipse Jetty 9.1.6.v20160112 patched?

Eclipse · cycle 9.1 · end of life · Official site ↗
9.1.6.v201601128/100Critical · exploited

Current stable (12.1.10): 100/100

Minimum safe version9.4.60

9.1.6.v20160112 has 8 open critical-or-high vulnerabilities. Run 9.4.60 or later to clear them. See what 9.4.60 fixes →

Health score8/100
Open issues18
Exploited now1
Cycle 9.1 EOL2014-12-31
Latest release12.1.10

Summary iPlain-English security status for Eclipse Jetty 9.1.6.v20160112, built from its CVEs, active-exploitation data, end-of-life date and latest release.

Eclipse Jetty 9.1.6.v20160112 is part of the 9.1 release line. 1 actively-exploited vulnerability affects it (CISA KEV). The minimum safe version is 9.4.60 — upgrade to it or later to clear the open critical/high issues. The 9.1 line reached end-of-life on 2014-12-31, so it no longer receives security patches. The latest supported Eclipse Jetty release is 12.1.10.

Known issues affecting 9.1.6.v20160112

Exploited first, then by exploitation probability.

CVE-2023-44487 HIGH exploited EPSS 100% → fixed in 12.0.2 CVE-2021-28169 MEDIUM EPSS 78% → fixed in 11.0.3 CVE-2021-28165 HIGH EPSS 54% → fixed in 11.0.2 CVE-2017-7658 CRITICAL EPSS 21% → fixed in 9.4.11 CVE-2017-7657 CRITICAL EPSS 16% → fixed in 9.4.11 CVE-2017-7656 HIGH EPSS 6% → fixed in 9.4.11 CVE-2017-9735 HIGH EPSS 6% → fixed in 9.4.6 CVE-2018-12536 MEDIUM EPSS 4% → fixed in 9.4.11 CVE-2020-27216 HIGH EPSS 4% → fixed in 9.3.29 CVE-2023-26048 MEDIUM EPSS 3% → fixed in 11.0.14 CVE-2022-2048 HIGH EPSS 2% → fixed in 11.0.9 CVE-2023-26049 LOW EPSS 1% → fixed in 11.0.14 CVE-2023-40167 MEDIUM EPSS 1% → fixed in 11.0.16 CVE-2023-36479 LOW EPSS 1% → fixed in 11.0.16 CVE-2024-6763 LOW EPSS 1% → fixed in 9.4.57 CVE-2021-34428 LOW EPSS 1% → see advisory CVE-2024-9823 MEDIUM EPSS 1% → fixed in 12.0.3 CVE-2022-2047 LOW EPSS 1% → fixed in 10.0.9

Other Eclipse Jetty versions

Check another release line of Eclipse Jetty.

Eclipse Jetty 12.1.10Eclipse Jetty 12.0.36Eclipse Jetty 11.0.26Eclipse Jetty 10.0.26Eclipse Jetty 9.4.58.v20250814Eclipse Jetty 9.3.30.v20211001Eclipse Jetty 9.2.30.v20200428Eclipse Jetty 9.0.7.v20131107Eclipse Jetty 8.2.0.v20160908Eclipse Jetty 7.6.21.v20160908

Frequently asked

Is Eclipse Jetty 9.1.6.v20160112 patched?

No — 1 actively-exploited vulnerability affects Eclipse Jetty 9.1.6.v20160112. Upgrade to at least 9.4.60.

What version should I upgrade Eclipse Jetty 9.1.6.v20160112 to?

Upgrade Eclipse Jetty 9.1.6.v20160112 to at least 9.4.60 to clear its 8 open critical-or-high vulnerabilities.

When does Eclipse Jetty 9.1 reach end-of-life?

Eclipse Jetty 9.1 reached end-of-life on 2014-12-31 and no longer receives security patches.

What is the latest version of Eclipse Jetty?

The latest supported Eclipse Jetty release is 12.1.10.

Is Eclipse Jetty 9.1.6.v20160112 still receiving security updates?

No — Eclipse Jetty 9.1.6.v20160112 is on the 9.1 line, which reached end-of-life on 2014-12-31 and no longer receives security updates. Upgrade to 12.1.10 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Eclipse's official advisory before you patch or upgrade — Eclipse Jetty official site ↗