VIR Vulnerability Intelligence Relay

Package impact

java Maven / io.netty:netty-codec-http

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-42580 medium 6.5 6.5 16d ago Netty vulnerable to HTTP Request Smuggling due to incorrect chunk size parsing
CVE-2021-43797 medium 5.5 5y ago HTTP request smuggling in netty
CVE-2021-21290 medium 5.5 5y ago Local Information Disclosure Vulnerability in Netty on Unix-Like systems
CVE-2026-41417 medium 5.3 5.3 23d ago Netty: Start-Line Injection in DefaultHttpRequest.setUri() Allows HTTP Request Smuggling and RTSP Request Injection
CVE-2026-33870 unknown 2mo ago Netty: HTTP Request Smuggling via Chunked Extension Quoted-String Parsing
CVE-2025-67735 unknown 6mo ago Netty has a CRLF Injection vulnerability in io.netty.handler.codec.http.HttpRequestEncoder
CVE-2025-58056 unknown 9mo ago Netty vulnerable to request smuggling due to incorrect parsing of chunk extensions
CVE-2024-29025 unknown 2y ago Netty's HttpPostRequestDecoder can OOM
CVE-2022-41915 unknown 4y ago Netty vulnerable to HTTP Response splitting from assigning header value iterator
CVE-2019-20444 unknown 6y ago HTTP Request Smuggling in Netty