pkg:maven/io.projectreactor.netty/reactor-netty-http
Type
maven
Namespace
io.projectreactor.netty
Name
reactor-netty-http
Known advisories, vulnerabilities and fixes for io.projectreactor.netty/reactor-netty-http package.
High
3
Moderate
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 1.0.11, < 1.0.24 |
CVE-2022-31684
|
MAVEN:GHSA-7W4X-4H67-PGMV | Invalid HTTP requests in Reactor Netty HTTP Server may reveal access tokens | moderate |
2022-10-20T12:00:17
(23 months ago) |
|
Fixed | = 1.0.24 |
CVE-2022-31684
|
MAVEN:GHSA-7W4X-4H67-PGMV | Invalid HTTP requests in Reactor Netty HTTP Server may reveal access tokens | moderate |
2022-10-20T12:00:17
(23 months ago) |
|
Affected | >= 0.8.0, < 0.8.16 >= 0.9.0, < 0.9.5 |
CVE-2020-5404
|
MAVEN:GHSA-GPCH-H32J-GX6X | Insufficiently Protected Credentials in Reactor Netty | moderate |
2022-02-10T20:24:17
(2 years ago) |
|
Fixed | = 0.8.16 = 0.9.5 |
CVE-2020-5404
|
MAVEN:GHSA-GPCH-H32J-GX6X | Insufficiently Protected Credentials in Reactor Netty | moderate |
2022-02-10T20:24:17
(2 years ago) |
|
Affected | >= 0.9.3, <= 0.9.4 |
CVE-2020-5403
|
MAVEN:GHSA-HP5X-RQF7-43VF | Improper Handling of Exceptional Conditions and Improper Input Validation in Reactor Netty | high |
2022-02-10T20:24:21
(2 years ago) |
|
Fixed | = 0.9.5 |
CVE-2020-5403
|
MAVEN:GHSA-HP5X-RQF7-43VF | Improper Handling of Exceptional Conditions and Improper Input Validation in Reactor Netty | high |
2022-02-10T20:24:21
(2 years ago) |
|
Affected | >= 1.0.0, < 1.0.39 >= 1.1.0, < 1.1.13 |
CVE-2023-34054
|
MAVEN:GHSA-Q24V-HPG3-V3JP | Reactor Netty HTTP Server denial of service vulnerability | high |
2023-11-28T09:30:27
(9 months ago) |
|
Fixed | = 1.0.39 = 1.1.13 |
CVE-2023-34054
|
MAVEN:GHSA-Q24V-HPG3-V3JP | Reactor Netty HTTP Server denial of service vulnerability | high |
2023-11-28T09:30:27
(9 months ago) |
|
Affected | >= 1.0.0, < 1.0.39 >= 1.1.0, < 1.1.13 |
CVE-2023-34062
|
MAVEN:GHSA-XJHV-P3FV-X24R | In Reactor Netty HTTP Server a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack | high |
2023-11-15T12:30:30
(10 months ago) |
|
Fixed | = 1.0.39 = 1.1.13 |
CVE-2023-34062
|
MAVEN:GHSA-XJHV-P3FV-X24R | In Reactor Netty HTTP Server a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack | high |
2023-11-15T12:30:30
(10 months ago) |