0.067 Low
EPSS
Percentile
93.9%
By specially crafting HTTP/2 requests, workers would be allocated 60 seconds longer than necessary, leading to worker exhaustion and a denial of service. Fixed in Apache HTTP Server 2.4.34 (Affected 2.4.18-2.4.30,2.4.33).
bugzilla.redhat.com/show_bug.cgi?id=1605048
www.cve.org/CVERecord?id=CVE-2018-1333 https://nvd.nist.gov/vuln/detail/CVE-2018-1333 https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-1333