CVE-2025-8671HIGHCVSS 7.5≥ 15 SP2, < 15-SP52025-08-13
CVE-2025-8671 [HIGH] CWE-404 CVE-2025-8671: A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and th
A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2 implementations may result in excessive server resource consumption leading to denial-of-service (DoS). By opening streams and then rapidly triggering the server to reset them—using malformed frames or flow control
cvelistv5nvd