Security Advisory

CVE-2022-2048

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-07 20:35:09

Last updated 2024-08-03 00:24:43

Assigner eclipse

State PUBLISHED

Description

In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.

← Browse all CVEs View on cve.org ↗