Golang Hpack vulnerabilities

1 known vulnerability affecting golang/hpack.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1

Vulnerabilities

Page 1 of 1

CVE-2022-41723HIGHCVSS 7.5fixed in 0.7.02023-02-28

CVE-2022-41723 [HIGH] CWE-400 CVE-2022-41723: A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, suff A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.