In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator code without clearing those ThreadLocals. A subsequent request using the same thread inherits the ThreadLocal values, leading to a broken access control and privilege escalation.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1751-1 advisory.

    - CVE-2026-2332: In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk     extensions are used, similar to the 'funky chunks' techniques (bsc#1262115).
    - CVE-2026-5795: Fixed JaspiAuthenticator broken access control (bsc#1261997).

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3277 advisory.

    In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two     ThreadLocal variable.

    Upon returning from the initial checks, there are conditions that cause an early return from the     JASPIAuthenticator code without clearing those ThreadLocals.

    A subsequent request using the same thread inherits the ThreadLocal values, leading to a broken access     control and privilege escalation. (CVE-2026-5795)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two     ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early     return from the JASPIAuthenticator code without clearing those ThreadLocals. A subsequent request using     the same thread inherits the ThreadLocal values, leading to a broken access control and privilege     escalation. (CVE-2026-5795)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
313660	SUSE SLED15 / SLES15 Security Update : jetty-minimal (SUSE-SU-2026:1751-1)	Nessus	SuSE Local Security Checks	critical
311217	Amazon Linux 2 : jetty, --advisory ALAS2-2026-3277 (ALAS-2026-3277)	Nessus	Amazon Linux Local Security Checks	high
306024	Linux Distros Unpatched Vulnerability : CVE-2026-5795	Nessus	Misc.	high

Detections

Analytics

CVE-2026-5795

high

Tenable Plugins

critical

high

high