[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-45802":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":194,"aliases":195,"duplicate_of":9,"upstream":196,"downstream":197,"duplicates":232,"related":233,"reserved_at":9,"published_at":240,"modified_at":241,"state":242,"summary":243,"references_raw":252,"kevs":282,"epss":283,"epss_history":286,"metrics":556,"affected":562},"CVE-2023-45802","When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, keeping the connection busy and open and causing the memory footprint to keep on growing. On connection close, all resources were reclaimed, but the process might run out of memory before that.\n\nThis was found by the reporter during testing of CVE-2023-44487 (HTTP/2 Rapid Reset Exploit) with their own test client. During \"normal\" HTTP/2 use, the probability to hit this bug is very low. The kept memory would not become noticeable before the connection closes or times out.\n\nUsers are recommended to upgrade to version 2.4.58, which fixes the issue.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-404","Improper Resource Shutdown or Release","The product does not release or incorrectly releases a resource before it is made available for re-use.","weakness","Draft","Class","Medium",[20,106,116,146,150,154,158],{"id":21,"name":22,"techniques":23},"CAPEC-125","Flooding",[24,78],{"id":25,"name":26,"tactics":27,"countermeasures":31},"T1498.001","Direct Network Flood",[28],{"id":29,"name":30},"TA0105","Impact",[32,37,41,45,49,53,57,61,65,69,74],{"id":33,"name":34,"tactic":35},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":36},"Detect",{"id":38,"name":39,"tactic":40},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":36},{"id":42,"name":43,"tactic":44},"D3-CSPP","Client-server Payload Profiling",{"name":36},{"id":46,"name":47,"tactic":48},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":36},{"id":50,"name":51,"tactic":52},"D3-NTSA","Network Traffic Signature Analysis",{"name":36},{"id":54,"name":55,"tactic":56},"D3-APCA","Application Protocol Command Analysis",{"name":36},{"id":58,"name":59,"tactic":60},"D3-NTCD","Network Traffic Community Deviation",{"name":36},{"id":62,"name":63,"tactic":64},"D3-RTSD","Remote Terminal Session Detection",{"name":36},{"id":66,"name":67,"tactic":68},"D3-ISVA","Inbound Session Volume Analysis",{"name":36},{"id":70,"name":71,"tactic":72},"D3-NTF","Network Traffic Filtering",{"name":73},"Isolate",{"id":75,"name":76,"tactic":77},"D3-ITF","Inbound Traffic Filtering",{"name":73},{"id":79,"name":80,"tactics":81,"countermeasures":83},"T1499","Endpoint Denial of Service",[82],{"id":29,"name":30},[84,86,88,90,92,94,96,98,100,102,104],{"id":33,"name":34,"tactic":85},{"name":36},{"id":38,"name":39,"tactic":87},{"name":36},{"id":42,"name":43,"tactic":89},{"name":36},{"id":46,"name":47,"tactic":91},{"name":36},{"id":50,"name":51,"tactic":93},{"name":36},{"id":54,"name":55,"tactic":95},{"name":36},{"id":58,"name":59,"tactic":97},{"name":36},{"id":62,"name":63,"tactic":99},{"name":36},{"id":66,"name":67,"tactic":101},{"name":36},{"id":70,"name":71,"tactic":103},{"name":73},{"id":75,"name":76,"tactic":105},{"name":73},{"id":107,"name":108,"techniques":109},"CAPEC-130","Excessive Allocation",[110],{"id":111,"name":112,"tactics":113,"countermeasures":115},"T1499.003","Application Exhaustion Flood",[114],{"id":29,"name":30},[],{"id":117,"name":118,"techniques":119},"CAPEC-131","Resource Leak Exposure",[120],{"id":79,"name":80,"tactics":121,"countermeasures":123},[122],{"id":29,"name":30},[124,126,128,130,132,134,136,138,140,142,144],{"id":33,"name":34,"tactic":125},{"name":36},{"id":38,"name":39,"tactic":127},{"name":36},{"id":42,"name":43,"tactic":129},{"name":36},{"id":46,"name":47,"tactic":131},{"name":36},{"id":50,"name":51,"tactic":133},{"name":36},{"id":54,"name":55,"tactic":135},{"name":36},{"id":58,"name":59,"tactic":137},{"name":36},{"id":62,"name":63,"tactic":139},{"name":36},{"id":66,"name":67,"tactic":141},{"name":36},{"id":70,"name":71,"tactic":143},{"name":73},{"id":75,"name":76,"tactic":145},{"name":73},{"id":147,"name":148,"techniques":149},"CAPEC-494","TCP Fragmentation",[],{"id":151,"name":152,"techniques":153},"CAPEC-495","UDP Fragmentation",[],{"id":155,"name":156,"techniques":157},"CAPEC-496","ICMP Fragmentation",[],{"id":159,"name":160,"techniques":161},"CAPEC-666","BlueSmacking",[162,188],{"id":25,"name":26,"tactics":163,"countermeasures":165},[164],{"id":29,"name":30},[166,168,170,172,174,176,178,180,182,184,186],{"id":33,"name":34,"tactic":167},{"name":36},{"id":38,"name":39,"tactic":169},{"name":36},{"id":42,"name":43,"tactic":171},{"name":36},{"id":46,"name":47,"tactic":173},{"name":36},{"id":50,"name":51,"tactic":175},{"name":36},{"id":54,"name":55,"tactic":177},{"name":36},{"id":58,"name":59,"tactic":179},{"name":36},{"id":62,"name":63,"tactic":181},{"name":36},{"id":66,"name":67,"tactic":183},{"name":36},{"id":70,"name":71,"tactic":185},{"name":73},{"id":75,"name":76,"tactic":187},{"name":73},{"id":189,"name":190,"tactics":191,"countermeasures":193},"T1499.001","OS Exhaustion Flood",[192],{"id":29,"name":30},[],[],[],[],[198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230],{"_key":199},"ALPINE-CVE-2023-45802",{"_key":201},"SUSE-SU-2024:3949-1",{"_key":203},"SUSE-SU-2024:3962-1",{"_key":205},"SUSE-SU-2024:3961-1",{"_key":207},"SUSE-SU-2024:3999-1",{"_key":209},"OPENSUSE-SU-2024:13350-1",{"_key":211},"DLA-3818-1",{"_key":213},"DSA-5662-1",{"_key":215},"MGASA-2023-0304",{"_key":217},"USN-6506-1",{"_key":219},"DEBIAN-CVE-2023-45802",{"_key":221},"RHSA-2024:2368",{"_key":223},"RHSA-2024:2891",{"_key":225},"RHSA-2024:3121",{"_key":227},"UBUNTU-CVE-2023-45802",{"_key":229},"USN-8338-1",{"_key":231},"RHSA-2023:7625",[],[234,235,236,237,238,239],{"_key":201},{"_key":203},{"_key":205},{"_key":207},{"_key":209},{"_key":215},"2023-10-23T06:50:23.991Z","2024-10-14T09:01:44.836Z","Analyzed",{"cisa_kev":244,"cisa_ransomware":244,"cisa_vendor":9,"epss_severity":245,"epss_score":246,"severity":247,"severity_score":248,"severity_version":249,"severity_source":250,"severity_vector":251,"severity_status":242},false,"low",0.02793,"medium",5.9,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",[253,259,266,270,274,278],{"url":254,"sources":255,"tags":257},"https://httpd.apache.org/security/vulnerabilities_24.html",[256,250],"cve.org",[258],"Vendor Advisory",{"url":260,"sources":261,"tags":262},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/",[256,250],[263,264,265],"X Transferred","Mailing List","Third Party Advisory",{"url":267,"sources":268,"tags":269},"https://security.netapp.com/advisory/ntap-20231027-0011/",[256,250],[263,265],{"url":271,"sources":272,"tags":273},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/",[256,250],[263,264,265],{"url":275,"sources":276,"tags":277},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/",[256,250],[263,264,265],{"url":279,"sources":280,"tags":281},"https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html",[256,250],[263,264,265],[],{"date":284,"score":246,"percentile":285},"2026-06-05",0.86389,[287,291,294,297,300,303,306,309,312,315,318,321,324,326,329,333,336,339,342,345,348,351,354,356,359,362,365,368,372,375,378,381,384,387,390,392,395,398,401,404,407,410,413,416,419,422,425,428,431,434,437,440,443,445,449,452,455,458,461,464,467,471,475,478,480,483,486,489,492,495,498,500,503,506,509,512,515,518,521,523,526,529,532,535,538,541,544,547,550,553],{"date":288,"score":289,"percentile":290},"2025-11-04",0.01741,0.81873,{"date":292,"score":289,"percentile":293},"2025-11-05",0.81874,{"date":295,"score":289,"percentile":296},"2025-11-06",0.81877,{"date":298,"score":289,"percentile":299},"2025-11-07",0.81887,{"date":301,"score":289,"percentile":302},"2025-11-08",0.81895,{"date":304,"score":289,"percentile":305},"2025-11-09",0.81892,{"date":307,"score":289,"percentile":308},"2025-11-10",0.81885,{"date":310,"score":289,"percentile":311},"2025-11-11",0.81893,{"date":313,"score":289,"percentile":314},"2025-11-12",0.81903,{"date":316,"score":289,"percentile":317},"2025-11-13",0.81909,{"date":319,"score":289,"percentile":320},"2025-11-14",0.81913,{"date":322,"score":289,"percentile":323},"2025-11-15",0.81908,{"date":325,"score":289,"percentile":317},"2025-11-16",{"date":327,"score":289,"percentile":328},"2025-11-17",0.81907,{"date":330,"score":331,"percentile":332},"2025-11-18",0.15611,0.94132,{"date":334,"score":331,"percentile":335},"2025-11-19",0.94137,{"date":337,"score":331,"percentile":338},"2025-11-20",0.9414,{"date":340,"score":289,"percentile":341},"2025-11-21",0.81923,{"date":343,"score":289,"percentile":344},"2025-11-22",0.81927,{"date":346,"score":289,"percentile":347},"2025-11-23",0.81921,{"date":349,"score":289,"percentile":350},"2025-11-24",0.81919,{"date":352,"score":289,"percentile":353},"2025-11-25",0.8192,{"date":355,"score":289,"percentile":347},"2025-11-26",{"date":357,"score":289,"percentile":358},"2025-11-27",0.81925,{"date":360,"score":289,"percentile":361},"2025-11-28",0.81916,{"date":363,"score":289,"percentile":364},"2025-11-29",0.81922,{"date":366,"score":289,"percentile":367},"2025-11-30",0.81928,{"date":369,"score":370,"percentile":371},"2025-12-01",0.00399,0.60029,{"date":373,"score":370,"percentile":374},"2025-12-02",0.6004,{"date":376,"score":370,"percentile":377},"2025-12-03",0.60046,{"date":379,"score":289,"percentile":380},"2025-12-04",0.81926,{"date":382,"score":289,"percentile":383},"2025-12-05",0.81933,{"date":385,"score":289,"percentile":386},"2025-12-06",0.81932,{"date":388,"score":289,"percentile":389},"2025-12-07",0.8193,{"date":391,"score":289,"percentile":383},"2025-12-08",{"date":393,"score":289,"percentile":394},"2025-12-09",0.8195,{"date":396,"score":289,"percentile":397},"2025-12-10",0.81977,{"date":399,"score":289,"percentile":400},"2025-12-11",0.81995,{"date":402,"score":289,"percentile":403},"2025-12-12",0.82005,{"date":405,"score":289,"percentile":406},"2025-12-13",0.82006,{"date":408,"score":289,"percentile":409},"2025-12-14",0.82003,{"date":411,"score":289,"percentile":412},"2025-12-15",0.82,{"date":414,"score":289,"percentile":415},"2025-12-16",0.8201,{"date":417,"score":289,"percentile":418},"2025-12-17",0.82017,{"date":420,"score":289,"percentile":421},"2025-12-18",0.82028,{"date":423,"score":289,"percentile":424},"2025-12-19",0.82034,{"date":426,"score":289,"percentile":427},"2025-12-20",0.82027,{"date":429,"score":289,"percentile":430},"2025-12-21",0.82025,{"date":432,"score":289,"percentile":433},"2025-12-22",0.82029,{"date":435,"score":289,"percentile":436},"2025-12-23",0.82033,{"date":438,"score":289,"percentile":439},"2025-12-24",0.82041,{"date":441,"score":289,"percentile":442},"2025-12-25",0.82057,{"date":444,"score":289,"percentile":442},"2025-12-26",{"date":446,"score":447,"percentile":448},"2025-12-27",0.02075,0.83552,{"date":450,"score":289,"percentile":451},"2025-12-28",0.82042,{"date":453,"score":289,"percentile":454},"2025-12-29",0.82037,{"date":456,"score":289,"percentile":457},"2025-12-30",0.82046,{"date":459,"score":289,"percentile":460},"2025-12-31",0.82059,{"date":462,"score":370,"percentile":463},"2026-01-01",0.60272,{"date":465,"score":370,"percentile":466},"2026-01-02",0.60258,{"date":468,"score":469,"percentile":470},"2026-01-03",0.00368,0.58296,{"date":472,"score":473,"percentile":474},"2026-01-04",0.02165,0.83837,{"date":476,"score":473,"percentile":477},"2026-01-05",0.83831,{"date":479,"score":473,"percentile":474},"2026-01-06",{"date":481,"score":473,"percentile":482},"2026-01-07",0.83836,{"date":484,"score":473,"percentile":485},"2026-01-08",0.83844,{"date":487,"score":473,"percentile":488},"2026-01-09",0.83846,{"date":490,"score":473,"percentile":491},"2026-01-10",0.83841,{"date":493,"score":473,"percentile":494},"2026-01-11",0.8384,{"date":496,"score":473,"percentile":497},"2026-01-12",0.83834,{"date":499,"score":473,"percentile":477},"2026-01-13",{"date":501,"score":473,"percentile":502},"2026-01-14",0.83851,{"date":504,"score":473,"percentile":505},"2026-01-15",0.8385,{"date":507,"score":473,"percentile":508},"2026-01-16",0.83859,{"date":510,"score":473,"percentile":511},"2026-01-17",0.83862,{"date":513,"score":473,"percentile":514},"2026-01-18",0.83857,{"date":516,"score":473,"percentile":517},"2026-01-19",0.83853,{"date":519,"score":473,"percentile":520},"2026-01-20",0.83854,{"date":522,"score":473,"percentile":508},"2026-01-21",{"date":524,"score":473,"percentile":525},"2026-01-22",0.83864,{"date":527,"score":473,"percentile":528},"2026-01-23",0.83889,{"date":530,"score":473,"percentile":531},"2026-01-24",0.83898,{"date":533,"score":473,"percentile":534},"2026-01-25",0.83895,{"date":536,"score":473,"percentile":537},"2026-01-26",0.83894,{"date":539,"score":473,"percentile":540},"2026-01-27",0.83899,{"date":542,"score":473,"percentile":543},"2026-01-28",0.83902,{"date":545,"score":473,"percentile":546},"2026-01-29",0.83903,{"date":548,"score":473,"percentile":549},"2026-01-30",0.83907,{"date":551,"score":473,"percentile":552},"2026-01-31",0.83911,{"date":554,"score":469,"percentile":555},"2026-02-01",0.58317,[557],{"source":250,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":558,"cvss_v4_0":9},{"baseScore":248,"baseSeverity":559,"vectorString":251,"impactScore":560,"exploitabilityScore":561},"MEDIUM",6,5.6,[563,575,583,591],{"ecosystem":9,"name":564,"vendor":565,"product":566,"cpe_part":567,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":568},"Apache HTTP Server","apache software foundation","apache http server","a",[569],{"version":570,"is_range":571,"range_type":256,"version_start":572,"version_start_type":573,"version_end":574,"version_end_type":573,"fixed_in":9},">= 2.4.17, \u003C= 2.4.57",true,"2.4.17","including","2.4.57",{"ecosystem":9,"name":576,"vendor":9,"product":576,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":577},"HTTP Server",[578],{"version":579,"is_range":571,"range_type":580,"version_start":572,"version_start_type":573,"version_end":581,"version_end_type":582,"fixed_in":9},"gte2.4.17_lt2.4.58","cpe","2.4.58","excluding",{"ecosystem":9,"name":584,"vendor":585,"product":586,"cpe_part":587,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":588},"debian linux","debian","debian_linux","o",[589],{"version":590,"is_range":244,"range_type":580,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":592,"vendor":593,"product":592,"cpe_part":587,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":594},"fedora","fedoraproject",[595,597,599],{"version":596,"is_range":244,"range_type":580,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"37",{"version":598,"is_range":244,"range_type":580,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38",{"version":600,"is_range":244,"range_type":580,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"39"]