CVE-2023-32732
CVSS v3.1
5.3 (Medium)
EPSS
0.09 % (40th)
Affected Products
2
Advisories
5
gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for -bin
suffixed headers will result in a disconnection by the gRPC server, but is typically allowed by HTTP2 proxies. We recommend upgrading beyond the commit in https://github.com/grpc/grpc/pull/32309 https://www.google.com/url
Weaknesses
- CWE-440
- Expected Behavior Violation
- CWE-NVD-Other
- CVE Status
- PUBLISHED
- CNA
- Google Inc.
- Published Date
-
2023-06-09 11:15:09
(15 months ago) - Updated Date
-
2023-08-02 16:43:16
(13 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...