Known Vulnerabilities for products from Netty

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Netty".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2026-49361 json		Not Provided	2026-06-01	2026-06-01
CVE-2026-44248 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, the MQTT 5 hea...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42587 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, HttpContentDec...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42586 json		Not Provided	2026-05-13	2026-05-14
CVE-2026-42585 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty incorrec...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42584 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, HttpClientCode...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42583 json		Not Provided	2026-05-13	2026-05-14
CVE-2026-42582 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final, when decoding header blocks, the...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42581 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, HttpObjectDeco...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42580 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk ...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42579 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's DNS co...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42578 json	Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's HttpPr...	Not Provided	2026-05-13	2026-05-18
CVE-2026-42577 json	Netty is an asynchronous, event-driven network application framework. From 4.2.0.Final to 4.2.13.Final , Netty's epoll transp...	Not Provided	2026-05-13	2026-05-18
CVE-2026-41417 json	Netty allows request-line validation to be bypassed when a `DefaultHttpRequest` or `DefaultFullHttpRequest` is created first ...	Not Provided	2026-05-06	2026-05-11
CVE-2026-33871 json	Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Final, a ...	Not Provided	2026-03-27	2026-03-30
CVE-2026-33870 json	Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Final, Ne...	Not Provided	2026-03-27	2026-03-30
CVE-2023-44487 json	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many stre...	Not Provided	2023-10-10	2026-05-12
CVE-2023-34462 json	Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance pr...	6.5 - MEDIUM	2023-06-22	2023-11-18
CVE-2023-4586 json	A vulnerability was found in the Hot Rod client. This security issue occurs as the Hot Rod client does not enable hostname va...	7.4 - HIGH	2023-10-04	2023-12-06
CVE-2022-41915 json	Netty project is an event-driven asynchronous network application framework. Starting in version 4.1.83.Final and prior to 4....	6.5 - MEDIUM	2022-12-13	2023-03-01

Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Netty

Type	Vendor	Product	Version
Application	Netty	Netty	3.10.0