What is CVE-2023-32732?

CVE-2023-32732 is a medium-severity vulnerability in Google Grpc, classified under Expected Behavior Violation. CVSS score: 5.3/10. Published 2023-06-09.

How severe is CVE-2023-32732?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Google Grpc

CVE-2023-32732

gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for `-bin` suffixed headers will result in a disconnection by the gRPC server, but is typ…

EPSS: 0.000 (7.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L.

Affected products

Google Grpc — versions 1.53

Weakness classification (CWE)

CWE-440 — Expected Behavior Violation

References

github.com/grpc/grpc/pull/32309
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/…
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/…

Frequently asked questions

What is CVE-2023-32732?: CVE-2023-32732 is a medium-severity vulnerability in Google Grpc, classified under Expected Behavior Violation. CVSS score: 5.3/10. Published 2023-06-09.
How severe is CVE-2023-32732?: Medium severity. CVSS v3 base score is 5.3 out of 10.