Maven/io.projectreactor.netty:reactor-netty-http

HIGH7.5CVE-2023-34062In Reactor Netty HTTP Server a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack

>= 1.1.0, < 1.1.13

HIGH7.5CVE-2020-5403Improper Handling of Exceptional Conditions and Improper Input Validation in Reactor Netty

>= 0.9.3, < 0.9.5

MEDIUM6.1CVE-2025-22227Reactor Netty HTTP is vulnerable to credential leaks during chained redirects

>= 1.3.0-M1, < 1.3.0-M5

MEDIUM5.9Insufficiently Protected Credentials in Reactor Netty

>= 0.9.0, < 0.9.5

MEDIUM4.3Invalid HTTP requests in Reactor Netty HTTP Server may reveal access tokens

>= 1.0.11, < 1.0.24

pkg:Maven/io.projectreactor.netty:reactor-netty-http

✅ Check your installed version

All known vulnerabilities