Vulnerabilities > CVE-2023-44487

047910
CVSS 7.5 - HIGH

Summary

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

Vulnerable Configurations

Part Description Count
Application
Ietf
1
Application
Nghttp2
118
Application
Netty
268
Application
Envoyproxy
4
Application
Eclipse
636
Application
Caddyserver
113
Application
Golang
310
Application
F5
1638
Application
Apache
526
Application
Apple
58
Application
Grpc
332
Application
Microsoft