Reactor netty
This hub aggregates every CVE we track for Reactor netty, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
0
Critical
3
High
0
In CISA KEV
Severity distribution
MEDIUM5HIGH3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
1
2024-072026-06
Latest CVEs
The 8 most recently published vulnerabilities affecting Reactor netty.
- CVE-2026-41715Reactor Netty HTTP Client Leaks Credentials On Protocol Downgrade Redirect6.1
- CVE-2025-22227CVE-2025-22227: Authentication Leak On Redirect With Reactor Netty HTTP Client6.1
- CVE-2023-34054Reactor Netty HTTP Server Metrics DoS Vulnerability5.3
- CVE-2023-34062In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory trave...7.5
- CVE-2022-31684Reactor Netty HTTP Server, in versions 1.0.11 - 1.0.23, may log request headers in some cases of invalid HTTP requests. The logged headers may reveal valid access tokens to those with access to ser...4.3
- CVE-2020-5403DoS Via Malformed URL with Reactor Netty HTTP Server7.5
- CVE-2020-5404Authentication Leak On Redirect With Reactor Netty HttpClient5.9
- CVE-2019-11284Reactor Netty authentication leak in redirects8.6
Product normalization is registry-driven with AI assist and human review. How it works