io.netty:netty-codec-classes-quic (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package io.netty:netty-codec-classes-quic, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2026-44894 — CVSS 7.5 (high): Netty is a network application framework for development of protocol servers and clients. NoQuicTokenHandler is the tokenHandler used when…
CVE-2026-50009 — CVSS 4.8 (medium): Netty is a network application framework for development of protocol servers and clients. Prior to version 4.2.15.Final, Netty QUIC exposes…