High severity7.5NVD Advisory· Published Dec 22, 2017· Updated May 13, 2026
CVE-2017-10908
CVE-2017-10908
Description
H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via specially crafted HTTP/2 header.
Affected products
1- Range: version 2.2.3 and earlier
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- github.com/h2o/h2o/issues/1544nvdThird Party Advisory
- jvn.jp/en/jp/JVN84182676/index.htmlnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.