CVE-2024-36387

{"id": "CVE-2024-36387", "cveTags": [], "metrics": {}, "published": "2024-07-01T19:15:03.497", "references": [{"url": "https://httpd.apache.org/security/vulnerabilities_24.html", "source": "security@apache.org"}, {"url": "https://security.netapp.com/advisory/ntap-20240712-0001/", "source": "security@apache.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "security@apache.org", "description": [{"lang": "en", "value": "CWE-476"}]}], "descriptions": [{"lang": "en", "value": "Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance."}, {"lang": "es", "value": "Ofrecer actualizaciones del protocolo WebSocket a trav\u00e9s de una conexi\u00f3n HTTP/2 podr\u00eda provocar una desreferencia del puntero nulo, lo que provocar\u00eda una falla del proceso del servidor y degradar\u00eda el rendimiento."}], "lastModified": "2024-07-12T14:15:11.670", "sourceIdentifier": "security@apache.org"}