A vulnerability categorized as problematic has been discovered in Netty up to 1.0/1.1/4.1.133.Final/4.2.13.Final . The impacted element is an unknown function of the component HTTPObjectDecoder . Executing a manipulation can lead to http request smuggling. This vulnerability is registered as CVE-2026-42581 . It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.