com.linecorp.armeria:armeria (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package com.linecorp.armeria:armeria, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2021-43795 — CVSS 7.5 (high): Armeria is an open source microservice framework. In affected versions an attacker can access an Armeria server's local file system beyond…
CVE-2023-38493 — CVSS 7.5 (high): Armeria is a microservice framework Spring supports Matrix variables. When Spring integration is used, Armeria calls Spring controllers via…
CVE-2019-16771 — CVSS 4.8 (medium): Versions of Armeria 0.85.0 through and including 0.96.0 are vulnerable to HTTP response splitting, which allows remote attackers to inject…