6.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.
bugzilla.redhat.com/show_bug.cgi?id=2295006
httpd.apache.org/security/vulnerabilities_24.html
nvd.nist.gov/vuln/detail/CVE-2024-36387
www.cve.org/CVERecord?id=CVE-2024-36387