CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-50247 – h2o QUIC state exhaustion DoS
https://notcve.org/view.php?id=CVE-2023-50247
12 Dec 2023 — h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. The QUIC stack (quicly), as used by H2O up to commit 43f86e5 (in version 2.3.0-beta and prior), is susceptible to a state exhaustion attack. When H2O is serving HTTP/3, a remote attacker can exploit this vulnerability to progressively increase the memory retained by the QUIC stack. This can eventually cause H2O to abort due to memory exhaustion. The vulnerability has been resolved in commit d67e81d03be12a9d53dc8271af6530f40164cd35. • https://github.com/h2o/h2o/commit/d67e81d03be12a9d53dc8271af6530f40164cd35 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2023-41337 – h2o vulnerable to TLS session resumption misdirection
https://notcve.org/view.php?id=CVE-2023-41337
12 Dec 2023 — h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. In version 2.3.0-beta2 and prior, when h2o is configured to listen to multiple addresses or ports with each of them using different backend servers managed by multiple entities, a malicious backend entity that also has the opportunity to observe or inject packets exchanged between the client and h2o may misdirect HTTPS requests going to other backends and observe the contents of that HTTPS request being sent. The attack involves a victim cl... • https://github.com/h2o/h2o/commit/35760540337a47e5150da0f4a66a609fad2ef0ab • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.8EPSS: 94%CPEs: 444EXPL: 17CVE-2023-44487 – HTTP/2 Rapid Reset Attack Vulnerability
https://notcve.org/view.php?id=CVE-2023-44487
10 Oct 2023 — The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. El protocolo HTTP/2 permite una denegación de servicio (consumo de recursos del servidor) porque la cancelación de solicitudes puede restablecer muchas transmisiones rápidamente, como se explotó en la naturaleza entre agosto y octubre de 2023. A flaw was found in handling multiplexed streams in the HTTP/2 protocol. ... • https://github.com/imabee101/CVE-2023-44487 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-30847 – H2O vulnerable to read from uninitialized pointer in the reverse proxy handler
https://notcve.org/view.php?id=CVE-2023-30847
27 Apr 2023 — H2O is an HTTP server. In versions 2.3.0-beta2 and prior, when the reverse proxy handler tries to processes a certain type of invalid HTTP request, it tries to build an upstream URL by reading from uninitialized pointer. This behavior can lead to crashes or leak of information to back end HTTP servers. Pull request number 3229 fixes the issue. The pull request has been merged to the `master` branch in commit f010336. • https://github.com/h2o/h2o/commit/f010336bab162839df43d9e87570897466c97e33 • CWE-824: Access of Uninitialized Pointer •
CVSS: 7.4EPSS: 12%CPEs: 1EXPL: 1CVE-2021-43848 – Unititialized memory access in h2o
https://notcve.org/view.php?id=CVE-2021-43848
01 Feb 2022 — h2o is an open source http server. In code prior to the `8c0eca3` commit h2o may attempt to access uninitialized memory. When receiving QUIC frames in certain order, HTTP/3 server-side implementation of h2o can be misguided to treat uninitialized memory as HTTP/3 frames that have been received. When h2o is used as a reverse proxy, an attacker can abuse this vulnerability to send internal state of h2o to backend servers controlled by the attacker or third party. Also, if there is an HTTP endpoint that reflec... • https://github.com/neex/hui2ochko • CWE-908: Use of Uninitialized Resource •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2018-0608
https://notcve.org/view.php?id=CVE-2018-0608
26 Jun 2018 — Buffer overflow in H2O version 2.2.4 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (DoS) via unspecified vectors. Desbordamiento de búfer en H2O, en versiones 2.2.4 y anteriores, permite que atacantes remotos ejecuten código arbitrario o provoquen una denegación de servicio (DoS) mediante vectores sin especificar. • http://jvn.jp/en/jp/JVN93226941/index.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2017-10868
https://notcve.org/view.php?id=CVE-2017-10868
22 Dec 2017 — H2O version 2.2.2 and earlier allows remote attackers to cause a denial of service in the server via specially crafted HTTP/1 header. H2O en sus versiones 2.2.2 y anteriores permite que atacantes remotos provoquen una denegación de servicio (DoS) en el servidor mediante cabeceras HTTP/1 especialmente manipuladas. • https://github.com/h2o/h2o/issues/1459 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2017-10869
https://notcve.org/view.php?id=CVE-2017-10869
22 Dec 2017 — Buffer overflow in H2O version 2.2.2 and earlier allows remote attackers to cause a denial-of-service in the server via unspecified vectors. Desbordamiento de búfer en las versiones 2.2.2 y anteriores de H2O permite que atacantes remotos provoquen una denegación de servicio (DoS) en el servidor mediante vectores no especificados. • https://github.com/h2o/h2o/issues/1460 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10872
https://notcve.org/view.php?id=CVE-2017-10872
22 Dec 2017 — H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via unspecified vectors. H2O en sus versiones 2.2.3 y anteriores permite que atacantes remotos provoquen una denegación de servicio (DoS) en el servidor mediante vectores no especificados. • https://github.com/h2o/h2o/issues/1543 • CWE-118: Incorrect Access of Indexable Resource ('Range Error') •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2017-10908
https://notcve.org/view.php?id=CVE-2017-10908
22 Dec 2017 — H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via specially crafted HTTP/2 header. H2O en sus versiones 2.2.3 y anteriores permite que atacantes remotos provoquen una denegación de servicio (DoS) en el servidor mediante cabeceras HTTP/2 especialmente manipuladas. • https://github.com/h2o/h2o/issues/1544 • CWE-20: Improper Input Validation •