A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.
References
Configurations
Configuration 1 (hide)
|
History
25 Nov 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Nov 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Nov 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
Information
Published : 2023-02-28 18:15
Updated : 2024-02-28 19:51
NVD link : CVE-2022-41723
Mitre link : CVE-2022-41723
CVE.ORG link : CVE-2022-41723
JSON object : View
Products Affected
golang
- http2
- go
- hpack
CWE