Package impact
Maven / org.eclipse.jetty.http2:http2-server
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-44487 | high | 7.5 | 10.0 | 3y ago | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | |||
| CVE-2022-2048 | unknown | — | — | 4y ago | Jetty vulnerable to Invalid HTTP/2 requests that can lead to denial of service |