diff --git a/neo4j.advisories.yaml b/neo4j.advisories.yaml
index 09bc846b26..3a0ed92057 100644
--- a/neo4j.advisories.yaml
+++ b/neo4j.advisories.yaml
@@ -127,6 +127,15 @@ advisories:
             componentType: java-archive
             componentLocation: /usr/share/java/neo4j/lib/jetty-http-10.0.20.jar
             scanner: grype
+      - timestamp: 2024-11-20T13:04:12Z
+        type: pending-upstream-fix
+        data:
+          note: |
+            This vulnerability relates to the 'jetty-http' dependency, which is fixed in v12.0.12 and later.
+            Unfortunately, we are not able to remediate this CVE, as bumping this dependency version results in build failures.
+            Specifically, there are version conflicts between the various jetty dependencies. Attempting to bump the related dependencies to the same version, results in different build issues.
+            Another component: 'jetty-servlet', has also been relocated to a new location in maven central: https://mvnrepository.com/artifact/org.eclipse.jetty/jetty-servlet. This requires additional code changes.
+            All attempts were made to chain up the required changes, but to no avail. Pending fix from upstream.
 
   - id: CGA-hc93-8f6j-gjx4
     aliases: