A vulnerability has been found in netty netty-incubator-codec-ohttp up to 0.0.22.Final and classified as critical . This vulnerability affects the function hasMemoryAddress of the component OHTTP Handler . This manipulation causes out-of-bounds read. This vulnerability is handled as CVE-2026-48040 . The attack can only be done within the local network. There is not any exploit available. The affected component should be upgraded.