Lucene search

K
hiveproHiveForce LabsHIVEPRO:D1BFFA74C265ED43DB5B9DE54BA073B6
HistoryOct 12, 2023 - 8:09 a.m.

HTTP2 Zero-Day Exploited for the Most Explosive DDoS Attacks

2023-10-1208:09:28
HiveForce Labs
www.hivepro.com
45
zero-day
http/2
rapid reset
ddos
cve-2023-44487
vulnerability
dos
hiveforce labs
threat advisory
remote attackers
protocol

EPSS

0.708

Percentile

98.1%

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A zero-day vulnerability in HTTP/2 has been actively exploited in August, introducing a novel DDoS technique referred as "Rapid Reset". The attack, utilizing CVE-2023-44487, exploits a vulnerability within the HTTP/2 protocol and enables remote attackers to carry out a denial of service (DoS) attack. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.