Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

SeverityHIGH
CVSS7.5
CWENVD-CWE-noinfo
KEV KEV (added )
Published
Modified

Related Products

Product Advisory Evidence
Cisco WAE Automation cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Unified Contact Center Enterprise cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Unified Contact Center cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Ultra Cloud Core - Session Management Function cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco TelePresence cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Secure Web Appliance cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Prime Network Registrar cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Prime Network cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Prime Cable Provisioning cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Operational Insights Collector cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco NX-OS Software cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Evolved Programmable Network Manager (EPNM) cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln
Cisco Enterprise Chat and Email cisco-sa-http2-reset-d8Kf32vZ Cisco OpenVuln