Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

nghttp2 nghttp2 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-35945
Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy’s HTTP/2 codec may leak a header map and bookkeeping structures upon receiving `RST_STREAM` immediately followed by the `GOAWAY` frames from an upstream server. In nghttp2, cleanup of pending requests...
Envoyproxy EnvoyNghttp2 Nghttp2
187
VMScore
CVE-2016-1544
nghttp2 prior to 1.7.1 allows remote malicious users to cause a denial of service (memory exhaustion).
Nghttp2 Nghttp2Fedoraproject Fedora 22Fedoraproject Fedora 23
445
VMScore
CVE-2018-1000168
nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerabil...
Nghttp2 Nghttp2Nodejs Node.jsDebian Debian Linux 9.0
890
VMScore
CVE-2015-8659
The idle stream handling in nghttp2 prior to 1.6.0 allows malicious users to have unspecified impact via unknown vectors, aka a heap-use-after-free bug.
Apple Mac Os XApple Iphone OsApple TvosApple WatchosNghttp2 Nghttp2
445
VMScore
CVE-2020-11080
In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. T...
Nghttp2 Nghttp2Debian Debian Linux 9.0Debian Debian Linux 10.0Opensuse Leap 15.1Fedoraproject Fedora 31Fedoraproject Fedora 33Oracle Enterprise Communications Broker 3.1.0Oracle Graalvm 19.3.2Oracle Graalvm 20.1.0Oracle MysqlOracle Enterprise Communications Broker 3.2.0Oracle Banking Extensibility Workbench 14.4.0Oracle Banking Extensibility Workbench 14.3.0Oracle Blockchain PlatformNodejs Node.js
NA
CVE-2024-28182
nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2 CONTINUATION frames even after a stream is reset to keep HPACK context in sync. This causes excessive CPU usage...
668
VMScore
CVE-2017-2428
An issue exists in certain Apple products. iOS prior to 10.3 is affected. macOS prior to 10.12.4 is affected. tvOS prior to 10.2 is affected. watchOS prior to 3.2 is affected. The issue involves nghttp2 prior to 1.17.0 in the "HTTPProtocol" component. It allows remote H...
Apple WatchosApple TvosApple Iphone OsApple Mac Os X
695
VMScore
CVE-2019-9513
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consu...
Apple SwiftnioApache Traffic ServerCanonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 19.04Debian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 30Synology Skynas -Synology Diskstation Manager 6.2Synology Vs960hd Firmware -Fedoraproject Fedora 29Opensuse Leap 15.0Opensuse Leap 15.1Redhat Software Collections 1.0Redhat Jboss Core Services 1.0Redhat Enterprise Linux 8.0Redhat Jboss Enterprise Application Platform 7.2.0Redhat Quay 3.0.0Redhat Openshift Service Mesh 1.0Redhat Jboss Enterprise Application Platform 7.3.0Oracle Graalvm 19.2.0
NA
CVE-2024-27983
An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. It is possible to leave some data in nghttp2 memory after reset when headers with HTTP/2 CONTINUATION frame are sent to the se...
695
VMScore
CVE-2019-9511
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and...
Apple SwiftnioApache Traffic ServerCanonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 19.04Debian Debian Linux 9.0Debian Debian Linux 10.0Synology Skynas -Synology Diskstation Manager 6.2Synology Vs960hd Firmware -Fedoraproject Fedora 29Fedoraproject Fedora 30Opensuse Leap 15.0Opensuse Leap 15.1Redhat Software Collections 1.0Redhat Jboss Core Services 1.0Redhat Enterprise Linux 8.0Redhat Jboss Enterprise Application Platform 7.2.0Redhat Quay 3.0.0Redhat Openshift Service Mesh 1.0Redhat Jboss Enterprise Application Platform 7.3.0Oracle Graalvm 19.2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook