all InfoSec news
FortiOS & FortiProxy - CVE-2023-44487 - Rapid Reset HTTP/2 vulnerability
Feb. 8, 2024, 8 a.m. |
FortiGuard Labs | FortiGuard Center - IR Advisories fortiguard.fortinet.com
CVE-2023-44487:
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly.
https://nvd.nist.gov/vuln/detail/CVE-2023-44487
2 rapid reset attack can cve cve-2023-44487 denial of service fortinet fortios fortiproxy http impact product product security protocol quickly rapid rapid reset rapid reset attack request reset resource security security team server service team vulnerability vulnerablity
More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - IR Advisories
FortiOS - Web server ETag exposure
3 weeks, 3 days ago |
fortiguard.fortinet.com
FortiSandbox - Arbitrary file read on endpoint
3 weeks, 3 days ago |
fortiguard.fortinet.com
FortiNAC-F - Lack of certificate validation
3 weeks, 3 days ago |
fortiguard.fortinet.com
FortiOS - Format String in CLI command
3 weeks, 3 days ago |
fortiguard.fortinet.com
FortiSandbox - Arbitrary file delete on endpoint
3 weeks, 3 days ago |
fortiguard.fortinet.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Offensive Security Engineer
@ Ivanti | United States, Remote
Senior Security Engineer I
@ Samsara | Remote - US
Senior Principal Information System Security Engineer
@ Chameleon Consulting Group | Herndon, VA
Junior Detections Engineer
@ Kandji | San Francisco
Data Security Engineer/ Architect - Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700