Risk Scores
EPSS Score
13.95%
94.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | nghttp2 | |
| Amazon | nginx |
Timeline
- CVE Published
- Feb 6, 2020 PoC Published
- Apr 14, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jun 17, 2023 EPSS Score
- Nov 8, 2023 EPSS Score
- Feb 9, 2024 EPSS Score
- Jul 22, 2024 EPSS Score
- Dec 17, 2024 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 27, 2025 EPSS Score
References
- ALAS-2019-1299: nginx (important) advisory
- ALAS-2019-1298: nghttp2 (important) advisory