1. Netty HTTP/2 Zero-Byte Frame Bypass Exposes Servers to DoS Flood (CVE-2026-33871)
A critical vulnerability in the widely-used Netty networking framework exposes HTTP/2 servers to a potent denial-of-service (DoS) attack. Tracked as CVE-2026-33871, the flaw allows a remote attacker to trigger a service outage by flooding a server with specially crafted CONTINUATION frames. The attack exploits a bypass...