For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

fedora 14

almalinux 8

nessus 46

redhat 25

ibm 11

cbl_mariner 21

atlassian 3

osv 13

openvas 31

amazon 1

rocky 4

veracode 1

github 2

debian 2

redos 1

oraclelinux 5

githubexploit 1

impervablog 1

hivepro 1

cisa_kev 1

debiancve 1

alpinelinux 1

cisco 1

cnvd 1

talosblog 1

gitlab 1

nvd 1

fedora

[SECURITY] Fedora 38 Update: wangle-2023.10.16.00-1.fc38

2023-10-24 01:23:49

[SECURITY] Fedora 39 Update: proxygen-2023.10.16.00-1.fc39

2023-11-03 19:01:54

[SECURITY] Fedora 38 Update: fbthrift-2023.10.16.00-1.fc38

2023-10-24 01:23:49

almalinux

Important: varnish security update

2023-10-23 00:00:00

Important: dotnet6.0 security update

2023-10-16 00:00:00

Important: varnish security update

2023-10-19 00:00:00

nessus

Oracle Linux 9 : varnish (ELSA-2023-5924)

2023-10-24 00:00:00

Oracle Linux 8 : nodejs:16 (ELSA-2023-5850)

2023-10-23 00:00:00

SUSE SLES12 Security Update : nghttp2 (SUSE-SU-2023:4199-1)

2023-10-27 00:00:00

redhat

(RHSA-2023:5929) Important: tomcat security update

2023-10-19 12:47:52

(RHSA-2023:5713) Moderate: nginx:1.22 security update

2023-10-16 08:06:40

(RHSA-2023:5712) Moderate: nginx:1.20 security update

2023-10-16 08:06:13

ibm

Security Bulletin: IBM WebSphere Application Server Liberty, which is bundled with IBM Cloud Pak for Applications, is vulnerable to denial of service due to HTTP/2 Rapid Reset vulnerability (CVE-2023-44487)

2023-11-15 20:45:34

Security Bulletin: IBM Storage Ceph is vulnerable to Uncontrolled Resource Consumption in Grafana (CVE-2023-44487)

2024-01-26 22:15:52

Security Bulletin: There is a vulnerability in HTTP/2 protocol used by Netty on IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2023-44487)

2024-04-05 15:08:02

cbl_mariner

CVE-2023-44487 affecting package moby-containerd-cc for versions less than 1.7.1-5

2024-02-09 19:07:07

CVE-2023-44487 affecting package vitess for versions less than 16.0.2-5

2024-02-09 19:07:07

CVE-2023-44487 affecting package terraform for versions less than 1.3.2-11

2024-02-09 19:07:07

atlassian

DoS (Denial of Service) io.netty:netty-codec-http2 in Confluence Data Center and Server

2023-11-03 00:45:12

DoS (Denial of Service) org.apache.tomcat:tomcat-coyote in Bamboo Data Center and Server

2023-11-10 01:44:55

DoS (Denial of Service) org.apache.tomcat:tomcat-coyote Vulnerability in Crowd Data Center and Server

2023-11-22 06:44:58

osv

BIT-nginx-ingress-controller-2023-44487

2023-11-06 08:56:48

dotnet8 vulnerability

2023-10-19 15:57:27

github.com/nghttp2/nghttp2 has HTTP/2 Rapid Reset

2023-10-10 18:23:21

openvas

openSUSE: Security Advisory for netty, netty (SUSE-SU-2023:4163-1)

2024-03-04 00:00:00

Huawei EulerOS: Security Advisory for nghttp2 (EulerOS-SA-2023-3282)

2023-12-12 00:00:00

Fedora: Security Advisory for mvfst (FEDORA-2023-17efd3f2cd)

2023-10-25 00:00:00

amazon

Important: nghttp2

2023-10-16 13:45:00

rocky

nodejs security update

2023-10-24 18:36:46

varnish security update

2023-10-24 18:35:47

varnish security update

2023-10-24 18:36:42

veracode

Denial Of Service (DoS)

2023-10-12 14:37:40

github

HTTP/2 Stream Cancellation Attack

2023-10-10 21:28:24

github.com/nghttp2/nghttp2 has HTTP/2 Rapid Reset

2023-10-10 18:23:21

debian

[SECURITY] [DLA 3638-1] h2o security update

2023-10-31 14:09:23

[SECURITY] [DLA 3617-2] tomcat9 regression update

2023-10-16 22:23:23

redos

ROS-20231107-01

2023-11-07 00:00:00

oraclelinux

.NET 7.0 security update

2023-10-18 00:00:00

nghttp2 security update

2023-10-19 00:00:00

nodejs:16 security update

2023-10-20 00:00:00

githubexploit

Exploit for Uncontrolled Resource Consumption in Ietf Http

2023-12-11 23:12:03

impervablog

HTTP/2 Rapid Reset Mitigation With Imperva WAF

2024-01-03 14:21:45

hivepro

Attacks, Vulnerabilities and Actors 9 October to 15 October 2023

2023-10-17 09:10:10

cisa_kev

HTTP/2 Rapid Reset Attack Vulnerability

2023-10-10 00:00:00

debiancve

CVE-2023-44487

2023-10-10 14:15:10

alpinelinux

CVE-2023-44487

2023-10-10 14:15:10

cisco

HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023

2023-10-16 16:00:00

cnvd

F5 BIG-IP Denial of Service Vulnerability (CNVD-2023-75597)

2023-10-11 00:00:00

talosblog

Year in Malware 2023: Recapping the major cybersecurity stories of the past year

2023-12-19 13:00:18

gitlab

HTTP/2 Stream Cancellation Attack

2023-10-10 00:00:00

nvd

CVE-2023-44487

2023-10-10 14:15:10

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.708

Percentile

98.1%

JSON

Related for RHSA-2023:5802