CVE-2019-9511

Home/CVE/Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potential

CVE

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potential

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks.

Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.

HIGH · CVSS 7.5 EPSS 0.13725

Schedule remediation

EPSS ≥ 0.10 - elevated exploitation probability
EPSS percentile: top 6% of all CVEs by exploitation likelihood
CVSS base score ≥ 7.0

Sigma rules1 YARA rules0

⬡

Weakness Classification

CWE-400Uncontrolled Resource Consumption

CWE-770Allocation of Resources Without Limits or Throttling

▤

Affected Products & Versions

apple swiftnio>= 1.0.0 and <= 1.4.0
apache traffic server>= 6.0.0 and <= 6.2.3
apache traffic server>= 7.0.0 and <= 7.1.6
apache traffic server>= 8.0.0 and <= 8.0.3
canonical ubuntu linuxall versions
debian linuxall versions
synology skynasall versions
synology diskstation managerall versions
Show all 29 affected productssynology vs960hd firmwareall versions
fedoraproject fedoraall versions
opensuse leapall versions
redhat jboss core servicesall versions
redhat jboss enterprise application platformall versions
redhat openshift service meshall versions
redhat quayall versions
redhat software collectionsall versions
redhat enterprise linuxall versions
oracle graalvmall versions
mcafee web gateway>= 7.7.2.0 and < 7.7.2.24
mcafee web gateway>= 7.8.2.0 and < 7.8.2.13
mcafee web gateway>= 8.1.0 and < 8.2.0
f5 nginx>= 1.9.5 and < 1.16.1
f5 nginx>= 1.17.0 and <= 1.17.2
oracle enterprise communications brokerall versions
nodejs node.js>= 8.0.0 and <= 8.8.1
nodejs node.js>= 8.9.0 and < 8.16.1
nodejs node.js>= 10.0.0 and <= 10.12.0
nodejs node.js>= 10.13.0 and < 10.16.3
nodejs node.js>= 12.0.0 and < 12.8.1

◈

Sigma Hunt Rules

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

producthighNginx Core Dump

▣

Scoring & Timeline

7.5

HIGH · CVSS v3.1 · cret@cert.org

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD13 Aug 2019 · 09:15 PM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

⚑

Vendor Advisories

suse-csafopenSUSE-SU-2024:11091-1
suse-csafopenSUSE-SU-2024:11092-1
usnUSN-6754-1
rhsaRHSA-2024:5856Moderate
suse-csafSUSE-SU-2021:0932-1
Show all 30 vendor advisoriesrhsaRHSA-2020:3192Important
rhsaRHSA-2020:2565Important
rhsaRHSA-2020:2067Important
rhsaRHSA-2020:0922Important
rhsaRHSA-2020:1445Important
suse-csafSUSE-SU-2019:14246-1
suse-csafSUSE-SU-2020:0059-1
rhsaRHSA-2019:4018Moderate
rhsaRHSA-2019:4019Moderate
rhsaRHSA-2019:4020Moderate
rhsaRHSA-2019:4021Moderate
suse-csafopenSUSE-SU-2019:2264-1
suse-csafSUSE-SU-2019:2559-1
suse-csafopenSUSE-SU-2019:2232-1
suse-csafopenSUSE-SU-2019:2234-1
suse-csafSUSE-SU-2019:2473-1
suse-csafopenSUSE-SU-2019:2114-1
suse-csafopenSUSE-SU-2019:2115-1
suse-csafopenSUSE-SU-2019:2120-1
suse-csafSUSE-SU-2019:2309-1
suse-csafSUSE-SU-2019:2259-1
suse-csafSUSE-SU-2019:2260-1
suse-csafSUSE-SU-2019:2254-1
usnUSN-4099-1
msrcCVE-2019-9511Denial of Service