8 matches found
ROOT-APP-MAVEN-CVE-2026-42578 CVE-2026-42578 in io.root.io.netty:netty-handler-proxy - Patched by Root
Root has patched CVE-2026-42578 in the io.root.io.netty:netty-handler-proxy package for Root:Maven. Multiple fixed versions available...
Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate Developer Edition
Summary Multiple vulnerabilities were addressed in IBM watsonx Orchestrate Developer Edition version 2.12.0 Vulnerability Details CVEID:CVE-2026-42578 DESCRIPTION: Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's HttpProxyHandl...
CVE-2026-42578 vulnerabilities
Vulnerabilities for packages: flyway, wildfly, cassandra, trino, docker-selenium, kserve-modelmesh, opensearch, akhq, management-api-for-apache-cassandra-5.0, zipkin, apache-activemq-artemis, tez, strimzi-kafka-operator, apicurio-registry, celeborn, apache-pulsar, thingsboard, druid, apache-nifi,...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.3 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +15846 more potentially affected by CVE-2026-42578 via io.netty:netty-handler-proxy (>=4.1.0.Beta4 <=4.1.132.Final)
io.netty:netty-handler-proxy MAVEN version =4.1.0.Beta4, =0.1.0-alpha.3, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.3, =0.1.0-alpha.3, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.28.0 and more Source cves:...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.3 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +15846 more potentially affected by CVE-2025-67735 +1 more via io.netty:netty-handler-proxy (>=4.1.0.Beta4 <=4.1.132.Final)
io.netty:netty-handler-proxy MAVEN version =4.1.0.Beta4, =0.1.0-alpha.3, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.3, =0.1.0-alpha.3, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.28.0 and more Source cves:...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +2181 more potentially affected by CVE-2026-42578 via io.netty:netty-handler-proxy (>=4.2.0.Alpha1 <=4.2.12.Final)
io.netty:netty-handler-proxy MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.2 and more Source cves: CVE-2026-42578 Source advisory: OSV:GHSA-45Q3-82M4-75JR...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +2181 more potentially affected by CVE-2025-67735 +1 more via io.netty:netty-handler-proxy (>=4.2.0.Alpha1 <=4.2.12.Final)
io.netty:netty-handler-proxy MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.2 and more Source cves: CVE-2025-67735, CVE-2026-42578 Source advisory: SNYK:JAVA-IONETTY-16438935...
CVE-2026-42578
creationtimestamp| type| source ---|---|--- 2026-05-05 18:05:31+00:00| published-proof-of-concept| https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr...