15 Total advisories
15 Vulnerabilities
0 Malware
Vulnerabilities
MEDIUM 6.5
CVE-2026-42580
Netty vulnerable to HTTP Request Smuggling due to incorrect chunk size parsing
HIGH 7.5
CVE-2026-42587
Netty: HttpContentDecompressor maxAllocation bypass when Content-Encoding set to br/zstd/snappy leads to decompression bomb DoS
MEDIUM 6.5
CVE-2026-42585
Netty vulnerable to HTTP Request Smuggling due to malformed Transfer-Encoding
HIGH 7.3
CVE-2026-42584
Netty has HttpClientCodec response desynchronization
MEDIUM 5.8
CVE-2026-42581
Netty HTTP/1.0 TE+CL Coexistence Bypasses Smuggling Sanitization
MEDIUM 5.3
CVE-2026-41417
Netty: Start-Line Injection in DefaultHttpRequest.setUri() Allows HTTP Request Smuggling and RTSP Request Injection
HIGH 7.5
CVE-2026-33870
Netty: HTTP Request Smuggling via Chunked Extension Quoted-String Parsing
MEDIUM 6.5
CVE-2021-43797
HTTP request smuggling in netty
MEDIUM 6.2
CVE-2021-21290
Local Information Disclosure Vulnerability in Netty on Unix-Like systems
MEDIUM 5.5
CVE-2022-24823
Local Information Disclosure Vulnerability in io.netty:netty-codec-http
MEDIUM 6.5
CVE-2025-67735
Netty has a CRLF Injection vulnerability in io.netty.handler.codec.http.HttpRequestEncoder
UNKNOWN
CVE-2025-58056
Netty vulnerable to request smuggling due to incorrect parsing of chunk extensions
MEDIUM 5.3
CVE-2024-29025
Netty's HttpPostRequestDecoder can OOM
MEDIUM 6.5
CVE-2022-41915
Netty vulnerable to HTTP Response splitting from assigning header value iterator
CRITICAL 9.1
CVE-2019-20444
HTTP Request Smuggling in Netty
Ready to move
Start Securing
Free, no credit card | First findings in minutes