Vulnerability Description
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Simatic S7-1500 Cpu 1518F-4 Pn\/Dp Mfp Firmware | >= 3.1.5 |
| Siemens | Simatic S7-1500 Cpu 1518F-4 Pn\/Dp Mfp | - |
| Siemens | Sinec Ins | < 1.0 |
| Siemens | Sinec Nms | < 3.0 |
| Siemens | St7 Scadaconnect | < 1.1 |
| Siemens | Ruggedcom Ape1808 Firmware | - |
| Siemens | Ruggedcom Ape1808 | - |
| Siemens | Simatic S7-1500 Cpu 1518-4 Pn\/Dp Mfp Firmware | >= 3.1.5 |
| Siemens | Simatic S7-1500 Cpu 1518-4 Pn\/Dp | - |
| Siemens | Siplus S7-1500 Cpu 1518-4 Pn\/Dp Mfp Firmware | >= 3.1.5 |
| Siemens | Siplus S7-1500 Cpu 1518-4 Pn\/Dp Mfp | - |
| Ietf | Http | 2.0 |
| Nghttp2 | Nghttp2 | < 1.57.0 |
| Netty | Netty | < 4.1.100 |
| Envoyproxy | Envoy | 1.24.10 |
| Eclipse | Jetty | < 9.4.53 |
| Caddyserver | Caddy | < 2.7.5 |
| Golang | Go | < 1.20.10 |
| Golang | Http2 | < 0.17.0 |
| Golang | Networking | < 0.17.0 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2023/10/10/6Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/10/7Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/13/4Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/13/9Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/18/4Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/18/8Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/19/6Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2023/10/20/8Mailing ListThird Party Advisory
- https://access.redhat.com/security/cve/cve-2023-44487Vendor Advisory
- https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-toPress/Media CoverageThird Party Advisory
- https://aws.amazon.com/security/security-bulletins/AWS-2023-011/Third Party Advisory
- https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/Technical DescriptionVendor Advisory
- https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attaThird Party AdvisoryVendor Advisory
- https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/Vendor Advisory
- https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-4448Press/Media CoverageThird Party Advisory
FAQ
What is CVE-2023-44487?
CVE-2023-44487 is a vulnerability with a CVSS score of 7.5 (HIGH). The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
How severe is CVE-2023-44487?
CVE-2023-44487 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-44487?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Simatic S7-1500 Cpu 1518F-4 Pn\/Dp Mfp Firmware, Siemens Simatic S7-1500 Cpu 1518F-4 Pn\/Dp Mfp, Siemens Sinec Ins, Siemens Sinec Nms, Siemens St7 Scadaconnect.