Description
Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21325 Vulnerability (CVE-2022-21325)
WordPress Plugin WP-Testimonials SQL Injection (3.4.1)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-3011)
MediaWiki Missing Authentication for Critical Function Vulnerability (CVE-2019-12468)
WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (1.2)