AZL-39584 — Vulnetix

AZL-39584 PUBLISHED

CVE-2024-27983 affecting package nodejs for versions less than 20.14.0-1

Affected Products

Vendor	Product	Versions
Azure Linux:3	nodejs	0

Exploit Intelligence

CVE-2024-27983 this repository builds up a vulnerable HTTP2 Node.js server (`server-nossl.js`) based on CVE-2024-27983 which exploits a continuation flood vulnerability in HTTP2 servers. (github-poc-repo)
CVE-2024-27983 this repository builds up a vulnerable HTTP2 Node.js server (`server-nossl.js`) based on CVE-2024-27983 which exploits a continuation flood vulnerability in HTTP2 servers. (github-poc)
GenerationConfig.java (github-poc)
SelfAdaptationGenerationConfig.java (github-poc)

Timeline

Apr 9, 2024 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2024-27983 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›