CVE-2024-28182

MEDIUM

nghttp2 < 1.61.0 - Denial of Service via Unbounded HTTP/2 CONTINUATION Frames

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-28182. PoCs published by lockness-Ko.

AI-analyzed exploit summary This repository contains a functional Go-based proof-of-concept for CVE-2024-27316, a DoS vulnerability affecting HTTP/2 servers. The exploit sends maliciously crafted headers to trigger excessive resource consumption.

Description

nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2 CONTINUATION frames even after a stream is reset to keep HPACK context in sync. This causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates this vulnerability by limiting the number of CONTINUATION frames it accepts per stream. There is no workaround for this vulnerability.

Exploits (1)

github WORKING POC 15 stars

by lockness-Ko · gopoc

https://github.com/lockness-Ko/CVE-2024-27316

View Code ZIP pw:eip

This repository contains a functional Go-based proof-of-concept for CVE-2024-27316, a DoS vulnerability affecting HTTP/2 servers. The exploit sends maliciously crafted headers to trigger excessive resource consumption.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: HTTP/2 servers (unencrypted or TLS)

No auth needed

Prerequisites: Network access to target HTTP/2 server

MITRE ATT&CK