Netty

Netty

66 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Medienbericht Exploit
  • EPSS 0.63%
  • Veröffentlicht 03.09.2025 20:56:50
  • Zuletzt bearbeitet 08.09.2025 16:46:36

Netty is an asynchronous event-driven network application framework for development of maintainable high performance protocol servers and clients. In versions 4.1.124.Final, and 4.2.0.Alpha3 through 4.2.4.Final, Netty incorrectly accepts standalone n...

Medienbericht Exploit
  • EPSS 0.98%
  • Veröffentlicht 13.08.2025 14:17:36
  • Zuletzt bearbeitet 04.11.2025 22:16:30

Netty is an asynchronous, event-driven network application framework. Prior to versions 4.1.124.Final and 4.2.4.Final, Netty is vulnerable to MadeYouReset DDoS. This is a logical vulnerability in the HTTP/2 protocol, that uses malformed HTTP/2 contro...

  • EPSS 0.38%
  • Veröffentlicht 10.02.2025 22:15:38
  • Zuletzt bearbeitet 11.06.2025 15:36:22

Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windo...

Medienbericht Exploit
  • EPSS 2.11%
  • Veröffentlicht 10.02.2025 22:15:38
  • Zuletzt bearbeitet 05.09.2025 17:20:12

Netty, an asynchronous, event-driven network application framework, has a vulnerability starting in version 4.1.91.Final and prior to version 4.1.118.Final. When a special crafted packet is received via SslHandler it doesn't correctly handle validati...

Exploit
  • EPSS 0.41%
  • Veröffentlicht 12.11.2024 16:15:22
  • Zuletzt bearbeitet 05.09.2025 14:00:07

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. An unsafe reading of environment file could potentially cause a denial of service in Netty. When lo...

Exploit
  • EPSS 1.38%
  • Veröffentlicht 25.03.2024 20:15:08
  • Zuletzt bearbeitet 19.09.2025 15:10:53

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The `HttpPostRequestDecoder` can be tricked to accumulate data. While the decoder can store items o...

Warnung Medienbericht Exploit
  • EPSS 100%
  • Veröffentlicht 10.10.2023 14:15:10
  • Zuletzt bearbeitet 12.05.2026 15:10:32

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

Exploit
  • EPSS 2.46%
  • Veröffentlicht 22.06.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:07:18

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The `SniHandler` can allocate up to 16MB of heap for each channel during the TLS handshake. When th...

Exploit
  • EPSS 0.89%
  • Veröffentlicht 13.12.2022 07:15:13
  • Zuletzt bearbeitet 21.11.2024 07:24:03

Netty project is an event-driven asynchronous network application framework. Starting in version 4.1.83.Final and prior to 4.1.86.Final, when calling `DefaultHttpHeadesr.set` with an _iterator_ of values, header value validation was not performed, al...

Exploit
  • EPSS 1.47%
  • Veröffentlicht 12.12.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 07:23:58

Netty project is an event-driven asynchronous network application framework. In versions prior to 4.1.86.Final, a StackOverflowError can be raised when parsing a malformed crafted message due to an infinite recursion. This issue is patched in version...