Io.projectreactor.netty:reactor-netty-http
This hub aggregates every CVE we track for Io.projectreactor.netty:reactor-netty-http, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Io.projectreactor.netty:reactor-netty-http.
- CVE-2025-22227CVE-2025-22227: Authentication Leak On Redirect With Reactor Netty HTTP Client6.1
- CVE-2023-34062In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory trave...7.5
- CVE-2022-31684Reactor Netty HTTP Server, in versions 1.0.11 - 1.0.23, may log request headers in some cases of invalid HTTP requests. The logged headers may reveal valid access tokens to those with access to ser...4.3
- CVE-2020-5403DoS Via Malformed URL with Reactor Netty HTTP Server7.5
- CVE-2020-5404Authentication Leak On Redirect With Reactor Netty HttpClient5.9
Product normalization is registry-driven with AI assist and human review. How it works