Circular Dependency Denial-of-Service Vulnerability in Proxygen HTTP2 Priority Handling

Circular Dependency Denial-of-Service Vulnerability in Proxygen HTTP2 Priority Handling

CVE-2018-6346 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings (specifically a circular dependency). This affects Proxygen prior to v2018.12.31.00.

Learn more about our Web Application Penetration Testing UK.