TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare

By rooter

Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora.

The vulnerability has been codenamed HTTP/2 Bomb by Calif.

“The vulnerable behavior exists in each server’s default HTTP/2 configuration,” the company said, adding it was discovered by OpenAI Codex by chaining

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

rooter
Cyber Security

Malicious Notifications Could Trick Google Gemini Users

rooter
Cyber Security

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

rooter

Leave a Reply

You Missed

News

Hell Yeah, It’s Another Patricia Episode on ‘Widow’s Bay’

News

SwitchBot’s Weather Station Sounds Like the E Ink Smart Display of My Dreams

News

SpaceX’s Next Big Business Could Be Building Stuff in Space

News

‘Star Trek: Strange New Worlds’ Season Four Teases Battles With ‘Inner Demons’