Security Advisory

CVE-2024-30156

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-24 00:00:00

Last updated 2024-11-21 19:12:19

Assigner mitre

State PUBLISHED

Description

Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 (and before 6.0.13 LTS), and Varnish Enterprise 6 before 6.0.12r6, allows credits exhaustion for an HTTP/2 connection control flow window, aka a Broke Window Attack.

← Browse all CVEs View on cve.org ↗