CVE-2024-36387

Опубликовано: 03 дек. 2024

Источник: msrc

CVSS3: 5.4

EPSS Низкий

Описание

Apache HTTP Server: DoS by Null pointer in websocket over HTTP/2

EPSS

Процентиль: 33%

0.0013

Низкий

5.4 Medium

CVSS3

Связанные уязвимости

CVE-2024-36387

CVSS3: 5.4

ubuntu

больше 1 года назад

Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.

CVE-2024-36387

CVSS3: 3.7

redhat

больше 1 года назад

Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.

CVE-2024-36387

CVSS3: 5.4

nvd

больше 1 года назад

Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.

CVE-2024-36387

CVSS3: 5.4

debian

больше 1 года назад

Serving WebSocket protocol upgrades over a HTTP/2 connection could res ...

RLSA-2024:8680

rocky

около 1 года назад

Low: mod_http2 security update

EPSS

Процентиль: 33%

0.0013

Низкий

5.4 Medium

CVSS3