Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

netty — Vulnerabilities & Security Advisories 20

All 20 CVE vulnerabilities found in netty, with AI-generated Chinese analysis, references, and POCs.

Vendor: netty

CVE IDTitleCVSSSeverityPublished
CVE-2026-33871 Netty HTTP/2 CONTINUATION Frame Flood DoS via Zero-Byte Frame Bypass CWE-770 7.5 -2026-03-27
CVE-2026-33870 Netty: HTTP Request Smuggling via Chunked Extension Quoted-String Parsing CWE-444 7.5 High2026-03-27
CVE-2025-67735 Netty has a CRLF Injection vulnerability in io.netty.handler.codec.http.HttpRequestEncoder CWE-93 6.5 Medium2025-12-16
CVE-2025-59419 Netty netty-codec-smtp SMTP Command Injection Vulnerability Allowing Email Forgery CWE-93 9.8 -2025-10-15
CVE-2025-58057 Netty's BrotliDecoder is vulnerable to DoS via zip bomb style attack CWE-409 7.5AIHighAI2025-09-03
CVE-2025-58056 Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions CWE-444 7.4AIHighAI2025-09-03
CVE-2025-55163 Netty MadeYouReset HTTP/2 DDoS Vulnerability CWE-770 7.5AIHighAI2025-08-13
CVE-2025-25193 Denial of Service attack on windows app using Netty CWE-400 5.5 Medium2025-02-10
CVE-2025-24970 SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine CWE-20 7.5 High2025-02-10
CVE-2024-47535 Denial of Service attack on windows app using Netty CWE-400 5.5 Medium2024-11-12
CVE-2024-29025 Netty HttpPostRequestDecoder can OOM CWE-770 5.3 Medium2024-03-25
CVE-2023-34462 netty-handler SniHandler 16MB allocation CWE-400 6.5 Medium2023-06-22
CVE-2022-41915 Netty 安全漏洞 CWE-436 6.5 Medium2022-12-13
CVE-2022-41881 Netty 安全漏洞 CWE-674 5.3 Medium2022-12-12
CVE-2022-24823 Local Information Disclosure Vulnerability in io.netty:netty-codec-http CWE-668 5.5 Medium2022-05-06
CVE-2021-43797 HTTP fails to validate against control chars in header names which may lead to HTTP request smuggling CWE-444 6.5 Medium2021-12-09
CVE-2021-37137 Netty 资源管理错误漏洞 CWE-400 7.5 -2021-10-19
CVE-2021-37136 Netty 资源管理错误漏洞 CWE-400 7.5 -2021-10-19
CVE-2021-21409 Possible request smuggling in HTTP/2 due missing validation of content-length CWE-444 5.9 Medium2021-03-30
CVE-2021-21290 Local Information Disclosure Vulnerability in Netty on Unix-Like systems due temporary files CWE-378 6.2 Medium2021-02-08

All 20 known CVE vulnerabilities affecting netty with full Chinese analysis, references, and POCs where available.