Vulnerabilities > Jetbrains > Ktor > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-17 CVE-2024-49580 Unspecified vulnerability in Jetbrains Ktor
In JetBrains Ktor before 3.0.0 improper caching in HttpCache Plugin could lead to response information disclosure
network
low complexity
jetbrains
5.3
2022-08-12 CVE-2022-38179 Incorrect Comparison vulnerability in Jetbrains Ktor
JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack
network
low complexity
jetbrains CWE-697
6.1
2022-08-12 CVE-2022-38180 Improper Authentication vulnerability in Jetbrains Ktor
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases
network
low complexity
jetbrains CWE-287
6.5
2022-05-12 CVE-2022-29930 Use of Insufficiently Random Values vulnerability in Jetbrains Ktor 2.0.0
SHA1 implementation in JetBrains Ktor Native 2.0.0 was returning the same value.
network
low complexity
jetbrains CWE-330
4.9
2021-02-03 CVE-2021-25763 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Jetbrains Ktor
In JetBrains Ktor before 1.4.2, weak cipher suites were enabled by default.
network
low complexity
jetbrains CWE-327
5.3
2021-02-03 CVE-2021-25762 HTTP Request Smuggling vulnerability in Jetbrains Ktor
In JetBrains Ktor before 1.4.3, HTTP Request Smuggling was possible.
network
low complexity
jetbrains CWE-444
5.3
2021-02-03 CVE-2021-25761 Inadequate Encryption Strength vulnerability in Jetbrains Ktor
In JetBrains Ktor before 1.5.0, a birthday attack on SessionStorage key was possible.
network
low complexity
jetbrains CWE-326
5.3
2020-11-16 CVE-2020-26129 HTTP Request Smuggling vulnerability in Jetbrains Ktor
In JetBrains Ktor before 1.4.1, HTTP request smuggling was possible.
network
low complexity
jetbrains CWE-444
6.5
2019-12-26 CVE-2019-19389 Injection vulnerability in Jetbrains Ktor
JetBrains Ktor framework before version 1.2.6 was vulnerable to HTTP Response Splitting.
network
low complexity
jetbrains CWE-74
5.4
2019-12-10 CVE-2019-19703 Open Redirect vulnerability in Jetbrains Ktor
In Ktor through 1.2.6, the client resends data from the HTTP Authorization header to a redirect location.
network
low complexity
jetbrains CWE-601
6.1