Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-41417 (GCVE-0-2026-41417)
Vulnerability from cvelistv5 – Published: 2026-05-06 20:52 – Updated: 2026-05-07 13:59
VLAI
EPSS
Title
Netty vulnerable to HTTP request smuggling and RTSP request injection via DefaultHttpRequest.setUri()
Summary
Netty allows request-line validation to be bypassed when a `DefaultHttpRequest` or `DefaultFullHttpRequest` is created first and its URI is later changed via `setUri()`. The constructors reject CRLF and whitespace characters that would break the start-line, but `setUri()` does not apply the same validation. `HttpRequestEncoder` and `RtspEncoder` then write the URI into the request line verbatim. If attacker-controlled input reaches `setUri()`, this enables CRLF injection and insertion of additional HTTP or RTSP requests, leading to HTTP request smuggling or desynchronization on the HTTP side and request injection on the RTSP side. This issue is fixed in versions 4.2.13.Final and 4.1.133.Final.
Severity
5.3 (Medium)
SSVC
Exploitation: poc
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://github.com/netty/netty/security/advisorie… | x_refsource_CONFIRM |
Impacted products
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-41417",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-07T13:59:21.169996Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-07T13:59:59.536Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "netty",
"vendor": "netty",
"versions": [
{
"status": "affected",
"version": "\u003e= 4.2.0.Alpha1, \u003c= 4.2.12.Final"
},
{
"status": "affected",
"version": "\u003c= 4.1.132.Final"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Netty allows request-line validation to be bypassed when a `DefaultHttpRequest` or `DefaultFullHttpRequest` is created first and its URI is later changed via `setUri()`. The constructors reject CRLF and whitespace characters that would break the start-line, but `setUri()` does not apply the same validation. `HttpRequestEncoder` and `RtspEncoder` then write the URI into the request line verbatim. If attacker-controlled input reaches `setUri()`, this enables CRLF injection and insertion of additional HTTP or RTSP requests, leading to HTTP request smuggling or desynchronization on the HTTP side and request injection on the RTSP side. This issue is fixed in versions 4.2.13.Final and 4.1.133.Final."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-93",
"description": "CWE-93: Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-444",
"description": "CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-06T20:52:47.206Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv"
}
],
"source": {
"advisory": "GHSA-v8h7-rr48-vmmv",
"discovery": "UNKNOWN"
},
"title": "Netty vulnerable to HTTP request smuggling and RTSP request injection via DefaultHttpRequest.setUri()"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-41417",
"datePublished": "2026-05-06T20:52:47.206Z",
"dateReserved": "2026-04-20T15:32:33.813Z",
"dateUpdated": "2026-05-07T13:59:59.536Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-41417",
"date": "2026-07-05",
"epss": "0.00307",
"percentile": "0.22443"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-41417\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-05-06T22:16:25.780\",\"lastModified\":\"2026-06-17T10:46:41.753\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Netty allows request-line validation to be bypassed when a `DefaultHttpRequest` or `DefaultFullHttpRequest` is created first and its URI is later changed via `setUri()`. The constructors reject CRLF and whitespace characters that would break the start-line, but `setUri()` does not apply the same validation. `HttpRequestEncoder` and `RtspEncoder` then write the URI into the request line verbatim. If attacker-controlled input reaches `setUri()`, this enables CRLF injection and insertion of additional HTTP or RTSP requests, leading to HTTP request smuggling or desynchronization on the HTTP side and request injection on the RTSP side. This issue is fixed in versions 4.2.13.Final and 4.1.133.Final.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"netty\",\"product\":\"netty\",\"versions\":[{\"version\":\"\u003e= 4.2.0.Alpha1, \u003c= 4.2.12.Final\",\"status\":\"affected\"},{\"version\":\"\u003c= 4.1.132.Final\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-07T13:59:21.169996Z\",\"id\":\"CVE-2026-41417\",\"options\":[{\"exploitation\":\"poc\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-93\"},{\"lang\":\"en\",\"value\":\"CWE-444\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netty:netty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.1.133\",\"matchCriteriaId\":\"DFE205A5-2C43-40C9-A2FF-CF6759B8D861\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netty:netty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2.0\",\"versionEndExcluding\":\"4.2.13\",\"matchCriteriaId\":\"D94A720F-9CED-4BE9-8C37-FD9E2FD28472\"}]}]}],\"references\":[{\"url\":\"https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\",\"Mitigation\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-41417\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-07T13:59:21.169996Z\"}}}], \"references\": [{\"url\": \"https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv\", \"tags\": [\"exploit\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-07T13:58:05.083Z\"}}], \"cna\": {\"title\": \"Netty vulnerable to HTTP request smuggling and RTSP request injection via DefaultHttpRequest.setUri()\", \"source\": {\"advisory\": \"GHSA-v8h7-rr48-vmmv\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"netty\", \"product\": \"netty\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 4.2.0.Alpha1, \u003c= 4.2.12.Final\"}, {\"status\": \"affected\", \"version\": \"\u003c= 4.1.132.Final\"}]}], \"references\": [{\"url\": \"https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv\", \"name\": \"https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Netty allows request-line validation to be bypassed when a `DefaultHttpRequest` or `DefaultFullHttpRequest` is created first and its URI is later changed via `setUri()`. The constructors reject CRLF and whitespace characters that would break the start-line, but `setUri()` does not apply the same validation. `HttpRequestEncoder` and `RtspEncoder` then write the URI into the request line verbatim. If attacker-controlled input reaches `setUri()`, this enables CRLF injection and insertion of additional HTTP or RTSP requests, leading to HTTP request smuggling or desynchronization on the HTTP side and request injection on the RTSP side. This issue is fixed in versions 4.2.13.Final and 4.1.133.Final.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-93\", \"description\": \"CWE-93: Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-444\", \"description\": \"CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-05-06T20:52:47.206Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-41417\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-07T13:59:59.536Z\", \"dateReserved\": \"2026-04-20T15:32:33.813Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-05-06T20:52:47.206Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
WID-SEC-W-2026-1372
Vulnerability from csaf_certbund - Published: 2026-05-05 22:00 - Updated: 2026-07-01 22:00Summary
Netty: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Netty ist ein asynchrones, ereignisgesteuertes Netzwerk-Anwendungs-Framework für die schnelle Entwicklung von wartbaren, hochleistungsfähigen Protokollservern und -clients.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Netty ausnutzen, um Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand zu verursachen.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Keycloak <26.6.3
Open Source / Keycloak
|
<26.6.3 | ||
|
Open Source Netty <4.2.13.Final
Open Source / Netty
|
<4.2.13.Final | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM SPSS Analytic Server
IBM / SPSS
|
cpe:/a:ibm:spss:analytic_server
|
Analytic Server | |
|
IBM DB2
IBM
|
cpe:/a:ibm:db2:-
|
— | |
|
Open Source Netty <4.1.133.Final
Open Source / Netty
|
<4.1.133.Final |
References
25 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Netty ist ein asynchrones, ereignisgesteuertes Netzwerk-Anwendungs-Framework f\u00fcr die schnelle Entwicklung von wartbaren, hochleistungsf\u00e4higen Protokollservern und -clients.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Netty ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1372 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1372.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1372 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1372"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-2c5c-chwr-9hqw vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-2c5c-chwr-9hqw"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-38f8-5428-x5cv vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-45q3-82m4-75jr vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-57rv-r2g8-2cj3 vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-cm33-6792-r9fm vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-f6hv-jmp6-3vwv vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-jfg9-48mv-9qgx vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-jfg9-48mv-9qgx"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-m4cv-j2px-7723 vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-mj4r-2hfc-f8p6 vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-rwm7-x88c-3g2p vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-rwm7-x88c-3g2p"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-v8h7-rr48-vmmv vom 2026-05-05",
"url": "https://github.com/advisories/GHSA-v8h7-rr48-vmmv"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-v8h7-rr48-vmmv vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-xxqh-mfjm-7mv9 vom 2026-05-05",
"url": "https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9"
},
{
"category": "external",
"summary": "Keycloak 26.6.3 release vom 2026-06-04",
"url": "https://www.keycloak.org/2026/06/keycloak-2663-released"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8401-1 vom 2026-06-08",
"url": "https://ubuntu.com/security/notices/USN-8401-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2308-1 vom 2026-06-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026653.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:24502 vom 2026-06-10",
"url": "https://access.redhat.com/errata/RHSA-2026:24502"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:23808 vom 2026-06-10",
"url": "https://access.redhat.com/errata/RHSA-2026:23808"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:25123 vom 2026-06-11",
"url": "https://access.redhat.com/errata/RHSA-2026:25123"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:28010 vom 2026-06-22",
"url": "https://access.redhat.com/errata/RHSA-2026:28010"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7277418 vom 2026-06-23",
"url": "https://www.ibm.com/support/pages/node/7277418"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7277997 vom 2026-06-25",
"url": "https://www.ibm.com/support/pages/node/7277997"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:34608 vom 2026-07-02",
"url": "https://access.redhat.com/errata/RHSA-2026:34608"
}
],
"source_lang": "en-US",
"title": "Netty: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-07-01T22:00:00.000+00:00",
"generator": {
"date": "2026-07-02T09:00:55.434+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1372",
"initial_release_date": "2026-05-05T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-05-05T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-05-06T22:00:00.000+00:00",
"number": "2",
"summary": "CVE erg\u00e4nzt"
},
{
"date": "2026-05-14T22:00:00.000+00:00",
"number": "3",
"summary": "Referenz(en) aufgenommen: EUVD-2026-30130, EUVD-2026-30124, EUVD-2026-30127, EUVD-2026-30129, EUVD-2026-30128, EUVD-2026-30126, EUVD-2026-30123, EUVD-2026-30122, EUVD-2026-30120, EUVD-2026-30125, EUVD-2026-30132, EUVD-2026-30121"
},
{
"date": "2026-06-04T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2026-06-08T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2026-06-09T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-06-10T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-06-22T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-06-23T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2026-06-25T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2026-07-01T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "11"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM DB2",
"product": {
"name": "IBM DB2",
"product_id": "T050433",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:db2:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Analytic Server",
"product": {
"name": "IBM SPSS Analytic Server",
"product_id": "T011787",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spss:analytic_server"
}
}
}
],
"category": "product_name",
"name": "SPSS"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c26.6.3",
"product": {
"name": "Open Source Keycloak \u003c26.6.3",
"product_id": "T054992"
}
},
{
"category": "product_version",
"name": "26.6.3",
"product": {
"name": "Open Source Keycloak 26.6.3",
"product_id": "T054992-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:keycloak:keycloak:26.6.3"
}
}
}
],
"category": "product_name",
"name": "Keycloak"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.2.13.Final",
"product": {
"name": "Open Source Netty \u003c4.2.13.Final",
"product_id": "T053584"
}
},
{
"category": "product_version",
"name": "4.2.13.Final",
"product": {
"name": "Open Source Netty 4.2.13.Final",
"product_id": "T053584-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:netty:netty:4.2.13.final"
}
}
},
{
"category": "product_version_range",
"name": "\u003c4.1.133.Final",
"product": {
"name": "Open Source Netty \u003c4.1.133.Final",
"product_id": "T053585"
}
},
{
"category": "product_version",
"name": "4.1.133.Final",
"product": {
"name": "Open Source Netty 4.1.133.Final",
"product_id": "T053585-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:netty:netty:4.1.133.final"
}
}
}
],
"category": "product_name",
"name": "Netty"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-41417",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-41417"
},
{
"cve": "CVE-2026-42577",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42577"
},
{
"cve": "CVE-2026-42578",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42578"
},
{
"cve": "CVE-2026-42579",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42579"
},
{
"cve": "CVE-2026-42580",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42580"
},
{
"cve": "CVE-2026-42581",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42581"
},
{
"cve": "CVE-2026-42582",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42582"
},
{
"cve": "CVE-2026-42583",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42583"
},
{
"cve": "CVE-2026-42584",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42584"
},
{
"cve": "CVE-2026-42585",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42585"
},
{
"cve": "CVE-2026-42586",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42586"
},
{
"cve": "CVE-2026-42587",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-42587"
},
{
"cve": "CVE-2026-44248",
"product_status": {
"known_affected": [
"T054992",
"T053584",
"T002207",
"67646",
"T000126",
"T011787",
"T050433",
"T053585"
]
},
"release_date": "2026-05-05T22:00:00.000+00:00",
"title": "CVE-2026-44248"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…