CVE-2024-36387 — Vulnetix

CVE-2024-36387 PUBLISHED

EPSS 0.19% · 40.4th percentile

Risk Scores

EPSS Score

0.19%

40.4th percentile

Affected Products

Vendor	Product	Versions
Amazon	mod_http2

Exploit Intelligence

CIRCL seen: CVE-2024-36387 (circl-sighting)
CIRCL seen: CVE-2024-36387 (circl-sighting)
http://www.openwall.com/lists/oss-security/2024/07/01/4 (circl)
https://httpd.apache.org/security/vulnerabilities_24.html (circl)
https://security.netapp.com/advisory/ntap-20240712-0001/ (circl)
https://www.cisa.gov/news-events/alerts/2025/05/01/cisa-adds-two-known-exploited-vulnerabilities-catalog (certbund)
cve_db.json (github-poc)
cve_db.json (github-poc)
cve_db.json (github-poc)
cve_db.json (github-poc)

…and 5 more exploits

Timeline

Jul 1, 2024 CVE Published
Jul 2, 2024 EPSS Score
Jul 17, 2024 PoC Published
Jul 17, 2024 PoC Published
Jul 24, 2024 EPSS Score
Aug 16, 2024 EPSS Score
Sep 29, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 21, 2024 EPSS Score
Nov 13, 2024 EPSS Score
Dec 6, 2024 EPSS Score
Dec 28, 2024 EPSS Score

References

ALAS2023-2024-689: mod_http2 (medium) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›