Netty: HTTP Request Smuggling due to incorrect chunk size parsing

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Description

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk size parser silently overflows int, enabling request smuggling attacks. This vulnerability is fixed in 4.2.13.Final and 4.1.133.Final.

Basic Information

ID CVE-2026-42580

Source GitHub_M

Published May 13, 2026 at 18:04

Affected Product

Vendor netty

Product netty

Version >= 4.2.0.Alpha1, < 4.2.13.Final

Affected Versions netty netty >= 4.2.0.Alpha1, < 4.2.13.Final
netty netty < 4.1.133.Final
io.netty netty-codec-http >= 4.2.0.Alpha1, < 4.2.13.Final
io.netty netty-codec-http < 4.1.133.Final

CWE Classification

CWE-444 CWE-190

References

github.com /netty/netty/security/advisories/GHSA-m4cv-j2px-7723

{
    "lastseen": "",
    "description": "Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk size parser silently overflows int, enabling request smuggling attacks. This vulnerability is fixed in 4.2.13.Final and 4.1.133.Final.",
    "published": "2026-05-13T18:04:03.690Z",
    "modified": "2026-05-13T18:04:03.690Z",
    "type": "cve",
    "title": "Netty: HTTP Request Smuggling due to incorrect chunk size parsing",
    "source": "GitHub_M",
    "references": "https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723",
    "id": "CVE-2026-42580",
    "bulletinFamily": "",
    "cwe": [
        "CWE-444",
        "CWE-190"
    ],
    "cvelist": null,
    "sourceData": "netty netty >= 4.2.0.Alpha1, < 4.2.13.Final\nnetty netty < 4.1.133.Final\nio.netty netty-codec-http >= 4.2.0.Alpha1, < 4.2.13.Final\nio.netty netty-codec-http < 4.1.133.Final",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "netty",
    "version": ">= 4.2.0.Alpha1, < 4.2.13.Final",
    "vendor": "netty",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Netty: HTTP Request Smuggling due to incorrect chunk size parsing_CVE-2026-42580