0.001 Low
EPSS
Percentile
47.7%
A vulnerability was found in dotnet’s ASP.NET Core Krestel when pooling HTTP/2 and HTTP/3 headers. This flaw allows a remote, unauthenticated attacker to cause a denial of service.
bugzilla.redhat.com/show_bug.cgi?id=2051490
github.com/dotnet/announcements/issues/207 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21986