CVE-2026-48040 | netty netty-incubator-codec-ohttp up to 0.0.22.Final OHTTP hasMemoryAddress out-of-bounds (EUVD-2026-34308)

A vulnerability has been found in netty netty-incubator-codec-ohttp up to 0.0.22.Final and classified as critical. This vulnerability affects the function hasMemoryAddress of the component OHTTP Handler. This manipulation causes out-of-bounds read.

This vulnerability is handled as CVE-2026-48040. The attack can only be done within the local network. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More