VDB
WID-SEC-W-2024-0115
WID-SEC-W-2024-0115
PUBLISHED
Die Oracle Supply Chain ist eine Sammlung von Applikationen für verschiedene Zwecke.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu Linux | ||
| Oracle Supply Chain 11.5 | ||
| Oracle Supply Chain 12.2 | ||
| Oracle Supply Chain <6.2.4.2 | ||
| Oracle Supply Chain 12.1 | ||
| Oracle Supply Chain 6.2.4.2 | ||
| Oracle Supply Chain 9.3.6 |
Exploit Intelligence
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc-repo)
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc)
- Educational environment for LTAT.04.022 Homework 4. (github-poc-repo)
- Educational environment for LTAT.04.022 Homework 4. (github-poc)
- TYuan0816/cve-2023-44487 (github-poc-repo)
- sn130hk/CVE-2023-44487 (github-poc-repo)
- RapidResetClient (github-poc-repo)
- POC for CVE-2023-44487 (github-poc-repo)
- Demo for detection and mitigation of HTTP/2 Rapid Reset vulnerability (CVE-2023-44487) (github-poc-repo)
- A comprehensive Python testing tool for CVE-2023-44487, the HTTP/2 Rapid Reset vulnerability. This enhanced version provides granular control over testing parameters, multiple attack patterns, and advanced monitoring capabilities. (github-poc-repo)
…and 72 more exploits
Timeline
- Jan 16, 2024 CVE Published
- Feb 24, 2025 CVE Updated
- Mar 31, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0115.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0115 advisory
- https://www.oracle.com/security-alerts/cpujan2024.html#AppendixSCP url
- https://ubuntu.com/security/notices/USN-6683-1 url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog url