HTTP/2 Protocol Denial of Service Vulnerability

Release Date: 4 Jun 2026 508 Views

RISK: High Risk

High Risk

TYPE: Web services - Web Servers

TYPE: Web Servers

A vulnerability was identified in HTTP/2 Protocol. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

 

Note:

Proof of Concept exploit code is publicly available for CVE-2026-49975. The vulnerability allows remote attacker to cause denial of service against most major web servers. The vulnerable behavior exists in each server's default HTTP/2 configuration. Hence, the risk level is rated as High Risk.

Impact

  • Denial of Service

System / Technologies affected

  • Web servers with HTTP/2 protocol enabled are potentially affected.

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the related vendors.

Vulnerability Identifier

Source

Related Link

Related Tags

Denial of ServiceHTTP/2Proof of Concept

Share with

Previous

SolarWinds Web Help Desk Denial of Service Vulnerability

4 Jun 2026 373 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY