Browse all 6 CVE security advisories affecting micronaut-projects. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Micronaut-projects is a Java framework designed for building modular, cloud-native applications with minimal startup time and memory footprint. Historically, common vulnerabilities include remote code execution through unsafe deserialization, cross-site scripting from improper input validation, and privilege escalation via misconfigured security settings. The framework has faced several security incidents, including a critical RCE flaw in versions prior to 3.8.0 related to template rendering, and multiple XSS vulnerabilities in earlier releases due to insufficient output encoding. These issues highlight the importance of regular updates and proper input handling when implementing micronaut-projects in production environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33013 | Micronaut vulnerable to DoS via crafted form-urlencoded body binding with descending array indices — micronaut-coreCWE-835 | 7.5 | - | 2026-03-20 |
| CVE-2026-33012 | Micronaut Framework vulnerable to a Denial of Service in HTML error response caching — micronaut-coreCWE-770 | 7.5 | High | 2026-03-20 |
| CVE-2024-23639 | micronaut-core management endpoints vulnerable to drive-by localhost attack — micronaut-coreCWE-15 | 5.1 | Medium | 2024-02-09 |
| CVE-2023-36820 | micronaut security has invalid IdTokenClaimsValidator logic on aud — micronaut-securityCWE-284 | 4.8 | Medium | 2023-10-09 |
| CVE-2022-21700 | Memory leak in micronaut-core — micronaut-coreCWE-400 | 5.3 | Medium | 2022-01-18 |
| CVE-2021-32769 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in micronaut-core — micronaut-coreCWE-22 | 7.5 | High | 2021-07-16 |
This page lists every published CVE security advisory associated with micronaut-projects. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.