HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
CVSS
No CVSS.
References
Configurations
No configuration.
History
01 May 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
01 May 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Apr 2024, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Apr 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Apr 2024, 12:40
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
04 Apr 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-04 20:15
Updated : 2024-05-01 18:15
NVD link : CVE-2024-27316
Mitre link : CVE-2024-27316
CVE.ORG link : CVE-2024-27316
JSON object : View
Products Affected
No product.
CWE
CWE-400
Uncontrolled Resource Consumption