CVE-2023-44487
Scores
EPSS
0.944high94.4%
0%20%40%60%80%100%
Percentile: 94.4%
CVSS
7.5high3.x
0246810
CVSS Score: 7.5/10
All CVSS Scores
CVSS 3.x
7.5Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Network (N)
Describes how the vulnerability is exploited
AV:N
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
AC:L
Privileges Required
None (N)
Describes the level of privileges an attacker must possess
PR:N
User Interaction
None (N)
Captures the requirement for a human user participation
UI:N
Scope
Unchanged (U)
Determines if a successful attack impacts components beyond the vulnerable component
S:U
Confidentiality Impact
None (N)
Measures the impact to the confidentiality of information
C:N
Integrity Impact
None (N)
Measures the impact to integrity of a successfully exploited vulnerability
I:N
Availability Impact
High (H)
Measures the impact to the availability of the impacted component
A:H
Description
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Scaner-VS 7 — a modern vulnerability management solution
Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7Sources
anchore_overridesastradebianmsrcnvdredhatubuntu
CWEs
400CWE-400
Related Vulnerabilities
Exploits
Exploit ID: CVE-2023-44487
Source: cisa
URL: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Recommendations
Source: nvd
All Go users should upgrade to the latest version:
# emerge –sync
# emerge –ask –oneshot –verbose “>=dev-lang/go-1.20.10”
# emerge –ask –oneshot –verbose @golang-rebuild
Vulnerable Software (630)
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:*" } ], "negate": false, "operator": "OR" } ], "oper...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:*" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.57.0" } ], "negate": f...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.57.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.24.12" }, { "cp...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.24.12" }, { "cpe23uri": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.25.11", "versionStartIncluding": "1.25" }, { "cpe23uri": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.26.6", "versionStartIncluding": "1.26" }, { "cpe23uri": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.27.2", "versionStartIncluding": "1.27" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*", "versionEndExcluding": "R29_P1", "versionStartIncluding": "R...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*", "versionEndExcluding": "R29_P1", "versionStartIncluding": "R25" }, { "cpe23uri": "cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*", "versionEndExcluding": "R30_P1", "versionStartIncluding": "R30" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.25.3", "versionStartIncluding": "1.9.5"...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.25.3", "versionStartIncluding": "1.9.5" } ], "negate": false, "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx_open_source:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.25.3", "versionStartIncluding": "1.9.5" } ], "negate": false, "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.25.3", "versionStartIncluding": "1.9.5" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx_ingress_controller:*:*:*:*:*:*:*:*", "versionEndExcluding": "3.3.1" } ], ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:f5:nginx_ingress_controller:*:*:*:*:*:*:*:*", "versionEndExcluding": "3.3.1" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.23", "versionStartIncluding": "...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.23", "versionStartIncluding": "6.0.0" }, { "cpe23uri": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "versionEndExcluding": "7.0.12", "versionStartIncluding": "7.0.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.23", "versionStartInclu...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.23", "versionStartIncluding": "6.0.0" }, { "cpe23uri": "cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*", "versionEndExcluding": "7.0.12", "versionStartIncluding": "7.0.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:azure_kubernetes_service:*:*:*:*:*:*:*:*", "versionEndExcluding": "2023-10-08" } ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:azure_kubernetes_service:*:*:*:*:*:*:*:*", "versionEndExcluding": "2023-10-08" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.2.20", "versionStartInc...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.2.20", "versionStartIncluding": "17" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.4.12", "versionStartIncluding": "17.3" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.6.8", "versionStartIncluding": "17.5" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.7.5", "versionStartIncluding": "17.7" } ], "negate": false, "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.2.20", "versionStartIncluding": "17" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.4.12", "versionStartIncluding": "17.3" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.6.8", "versionStartIncluding": "17.5" }, { "cpe23uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionEndExcluding": "17.7.5", "versionStartIncluding": "17.7" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "versionEndExcluding": "18.18.2" }, { "cpe2...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "versionEndExcluding": "18.18.2" }, { "cpe23uri": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "versionEndExcluding": "20.8.1", "versionStartIncluding": "19" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:facebook:proxygen:*:*:*:*:*:*:*:*", "versionEndExcluding": "2023.10.16.00" } ], "n...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:facebook:proxygen:*:*:*:*:*:*:*:*", "versionEndExcluding": "2023.10.16.00" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:apache:apisix:*:*:*:*:*:*:*:*", "versionEndExcluding": "3.6.1" } ], "negate": fals...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:apache:apisix:*:*:*:*:*:*:*:*", "versionEndExcluding": "3.6.1" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "versionEndExcluding": "8.1.9", "versionStartIncludi...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "versionEndExcluding": "8.1.9", "versionStartIncluding": "8.0.0" }, { "cpe23uri": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "versionEndExcluding": "9.2.3", "versionStartIncluding": "9.0.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:amazon:opensearch_data_prepper:*:*:*:*:*:*:*:*", "versionEndExcluding": "2.5.0" } ], ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:amazon:opensearch_data_prepper:*:*:*:*:*:*:*:*", "versionEndExcluding": "2.5.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:kazu-yamamoto:http2:*:*:*:*:*:*:*:*", "versionEndExcluding": "4.2.2" } ], "negate"...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:kazu-yamamoto:http2:*:*:*:*:*:*:*:*", "versionEndExcluding": "4.2.2" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.12" }, ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.12" }, { "cpe23uri": "cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*", "versionEndExcluding": "7.3.1", "versionStartIncluding": "6.1" }, { "cpe23uri": "cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*", "versionEndExcluding": "7.4.2", "versionStartIncluding": "7.4" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:konghq:kong_gateway:*:*:*:*:enterprise:*:*:*", "versionEndExcluding": "3.4.2" } ], ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:konghq:kong_gateway:*:*:*:*:enterprise:*:*:*", "versionEndExcluding": "3.4.2" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:openresty:openresty:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.21.4.3" } ], "nega...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:openresty:openresty:*:*:*:*:*:*:*:*", "versionEndExcluding": "1.21.4.3" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides
Type: Configuration
Operating System:
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:go:*:*", "versionEndExcluding": "1.57.0" } ], "negate": ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:go:*:*", "versionEndExcluding": "1.57.0" } ], "negate": false, "operator": "OR" } ], "operator": "OR"}
Source: anchore_overrides