What is CVE-2024-31309?

CVE-2024-31309 is a vulnerability in Apache Software Foundation Traffic Server, classified under Improper Input Validation. Published 2024-04-10.

Is CVE-2024-31309 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Improper input validation in Apache Software Foundation Traffic Server

CVE-2024-31309

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting (proxy.config.http2.max_continua…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.946 (99.8th percentile) — read the EPSS interpretation.

Affected products

Apache Software Foundation Traffic Server — versions 8.0.0, 9.0.0

Weakness classification (CWE)

CWE-20 — Improper Input Validation

Public proof-of-concept exploits

Ampferl/poc_
DrewskyDev/H2Flood
Vos68/HTTP2-Continuation-Flood-PoC
fkie-cad/nvd-json-data-feeds
lockness-Ko/CVE-2024-27316

References

lists.apache.org/thread/f9qh3g3jvy153wh82pz4onrfj1wh13kc (vendor-advisory)
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/…
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/…
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/…
lists.debian.org/debian-lts-announce/2024/04/msg00021.html
www.openwall.com/lists/oss-security/2024/04/03/16
www.openwall.com/lists/oss-security/2024/04/10/7

Frequently asked questions

What is CVE-2024-31309?: CVE-2024-31309 is a vulnerability in Apache Software Foundation Traffic Server, classified under Improper Input Validation. Published 2024-04-10.
Is CVE-2024-31309 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.