A vulnerability classified as problematic has been found in Netty up to 4.1.133.Final/4.2.13.Final . This impacts the function newInitialMessage . This manipulation causes http response splitting. This vulnerability is handled as CVE-2026-42578 . The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.