Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crashes. This vulnerability is fixed in 4.1.115.

The remote Redhat Enterprise Linux 7 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:3465 advisory.

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly     application runtime.

    This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4.

    Security Fix(es):

    * io.netty/netty: Denial of Service attack on windows app using Netty (CVE-2024-47535)

    * netty-common: Denial of Service attack on windows app using Netty (CVE-2025-25193)

    * io.netty/netty-handler: SslHandler doesn't correctly validate packets which can lead to native crash     when using native SSLEngine (CVE-2025-24970)

    * org.wildfly.core/wildfly-server: Wildfly improper RBAC permission (CVE-2025-23367)

    A Red Hat Security Bulletin which addresses further details about this flaw is available in the References     section.

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:3357 advisory.

    Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly     application runtime.

    This asynchronous patch is an update for Red Hat JBoss Enterprise Application Platform 8.0. See Release     Notes for information about the most     significant bug fixes and enhancements included in this release.

    Security Fix(es):

    * org.jboss.narayana-narayana-all: deadlock via multiple join requests sent to LRA Coordinator [eap-8.0.z]     (CVE-2024-8447)

    * io.netty/netty: Denial of Service attack on windows app using Netty [eap-8.0.z] (CVE-2024-47535)

    * io.netty/netty-handler: SslHandler doesn't correctly validate packets which can lead to native crash     when using native SSLEngine [eap-8.0.z] (CVE-2025-24970)

    * netty-common: Denial of Service attack on windows app using Netty [eap-8.0.z] (CVE-2025-25193)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6 IBM. It is, therefore, affected by a vulnerability as referenced in the 7185951 advisory.

  - Netty is an asynchronous event-driven network application framework for rapid development of maintainable     high performance protocol servers & clients. An unsafe reading of environment file could potentially cause     a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that     does not exist. If an attacker creates such a large file, the Netty application crashes. This     vulnerability is fixed in 4.1.115. (CVE-2024-47535)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a DoS vulnerability as referenced in the 7181925 advisory.

  - Netty is an asynchronous event-driven network application framework for rapid development of maintainable     high performance protocol servers & clients. An unsafe reading of environment file could potentially cause     a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that     does not exist. If an attacker creates such a large file, the Netty application crashes. This     vulnerability is fixed in 4.1.115. (CVE-2024-47535)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:4407-1 advisory.

    - CVE-2024-47535: Fixed unsafe reading of large environment files when Netty is loaded by a java     application can     lead to a crash due to the JVM memory limit being exceeded in netty (bsc#1233297)

    Other fixes:
    - Upgraded netty to upstream version 4.1.115
    - Upgraded netty-tcnative to version 2.0.69 Final
    - Updated jctools to version 4.0.5
    - Updated aalto-xml to version 1.3.3
    - Updated moditect to version 1.2.2
    - Updated flatten-maven-plugin to version 1.6.0

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
233918	RHEL 7 / 8 / 9 : Red Hat JBoss Enterprise Application Platform 7.4.21 (RHSA-2025:3465)	Nessus	Red Hat Local Security Checks	medium
233543	RHEL 8 / 9 : Red Hat JBoss Enterprise Application Platform 8.0.6 (RHSA-2025:3357)	Nessus	Red Hat Local Security Checks	medium
232824	IBM WebSphere eXtreme Scale 8.6.1 < 8.6.1.6 DoS (7185951)	Nessus	Web Servers	medium
214871	IBM WebSphere Application Server Liberty 21.0.0.2 < 25.0.0.2 DoS (7181925)	Nessus	Web Servers	medium
213377	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : aalto-xml, flatten-maven-plugin, jctools, moditect, netty, netty-tcnative (SUSE-SU-2024:4407-1)	Nessus	SuSE Local Security Checks	medium

Detections

Analytics

CVE-2024-47535

medium

Tenable Plugins

medium

medium

medium

medium

medium