Executive Summary

Informations
Name CVE-2023-44487 First vendor Publication 2023-10-10
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Overall CVSS Score 7.5
Base Score 7.5 Environmental Score 7.5
impact SubScore 3.6 Temporal Score 7.5
Exploitabality Sub Score 3.9
 
Attack Vector Network Attack Complexity Low
Privileges Required None User Interaction None
Scope Unchanged Confidentiality Impact None
Integrity Impact None Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 1
Application 1
Application 56
Application 546
Application 52
Application 1
Application 3
Application 7
Application 3
Application 2
Application 1
Application 1
Application 29
Application 138
Application 2
Application 13
Application 3
Application 1
Application 1
Application 44
Application 16
Application 1
Application 1
Application 114
Application 2
Application 1
Application 1
Application 1
Application 1
Application 1
Application 1
Application 1
Application 6
Application 324
Application 4
Application 147
Application 135
Application 43
Application 137
Application 130
Application 157
Application 6
Application 6
Application 16
Application 132
Application 124
Application 149
Application 146
Application 150
Application 1
Application 2
Application 135
Application 9
Application 103
Application 27
Application 468
Application 1
Application 3
Application 1
Application