Package impact
MAVEN / io.netty:netty-codec-http
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-42580 | medium | 6.5 | 6.5 | 15d ago | Netty vulnerable to HTTP Request Smuggling due to incorrect chunk size parsing | |
| CVE-2026-41417 | medium | 5.3 | 5.3 | 21d ago | Netty: Start-Line Injection in DefaultHttpRequest.setUri() Allows HTTP Request Smuggling and RTSP Request Injection |