VIR Vulnerability Intelligence Relay

Package impact

java Maven / io.netty:netty-codec-http2

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-42587 high 7.5 7.5 15d ago Netty: HttpContentDecompressor maxAllocation bypass when Content-Encoding set to br/zstd/snappy leads to decompression bomb DoS susedebianjava
CVE-2026-33871 unknown 2mo ago Netty HTTP/2 CONTINUATION Frame Flood DoS via Zero-Byte Frame Bypass susedebianjava
CVE-2025-55163 unknown 10mo ago Netty affected by MadeYouReset HTTP/2 DDoS vulnerability susedebianjava