VYPR

Maven package

io.netty/netty-parent

pkg:maven/io.netty/netty-parent

Vulnerabilities (1)

  • CVE-2015-2156HigOct 18, 2017
    affected >= 4.0.0, < 4.0.28.Finalfixed 4.0.28.Final

    Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation