You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Can Node.JS support confirm Node.JS v16 or lower version without using http2 will be exploitable to CVE-2023-44487 (HTTP2 exploited for DDoS attack)?
#51055
If my application running on Node.JS v16 or lower without using http2 module, will it still be exploitable to CVE-2023-44487 (HTTP2 exploited for DDoS attack)?
Is there any official support from Node.JS can confirm this?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
If my application running on Node.JS v16 or lower without using http2 module, will it still be exploitable to CVE-2023-44487 (HTTP2 exploited for DDoS attack)?
Is there any official support from Node.JS can confirm this?
Beta Was this translation helpful? Give feedback.
All reactions