CVE-2024-30156

Published: 2024-03-24T01:15Z

Last Modified: 2024-11-21T20:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 (and before 6.0.13 LTS), and Varnish Enterprise 6 before 6.0.12r6, allows credits exhaustion for an HTTP/2 connection control flow window, aka a Broke Window Attack. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt