diff --git a/build.gradle b/build.gradle
index 7bf62793..27416f11 100644
--- a/build.gradle
+++ b/build.gradle
@@ -9,6 +9,7 @@ plugins {
 ext {
     dockerImageVersion = release_version
     cradleVersion      = '5.4.4-dev'
+    nettyVersion = '4.1.115.Final'
 }
 
 group 'com.exactpro.th2'
@@ -55,6 +56,18 @@ dependencies {
     implementation(platform('io.ktor:ktor-bom:2.3.12'))
     implementation 'io.ktor:ktor-server-netty'
     implementation 'io.ktor:ktor-server'
+
+    // override transitive dependency because of CVE-2024-47535 vulnerability
+    implementation "io.netty:netty-buffer:$nettyVersion"
+    implementation "io.netty:netty-codec:$nettyVersion"
+    implementation "io.netty:netty-codec-http:$nettyVersion"
+    implementation "io.netty:netty-codec-http2:$nettyVersion"
+    implementation "io.netty:netty-codec-socks:$nettyVersion"
+    implementation "io.netty:netty-common:$nettyVersion"
+    implementation "io.netty:netty-handler-proxy:$nettyVersion"
+    implementation "io.netty:netty-transport-native-epoll:$nettyVersion"
+    implementation "io.netty:netty-transport-native-kqueue:$nettyVersion"
+
     implementation 'org.ehcache:ehcache:3.10.8'
     implementation('org.glassfish.jaxb:jaxb-runtime:2.3.9') {
         because("'2.3.9' version has 'EDL 1.0' license instead of 'CDDL GPL 1.1' in the '2.3.1'")