Security Advisory 0094

Arista Networks Security Advisory

Date: April 3, 2024

Revision
Date
Changes

1.0
April 3, 2024
Initial release

Description
Arista Networks is providing this security update in response to the following publicly disclosed security vulnerabilities related to HTTP/2 CONTINUATION frames. This set of vulnerabilities is the result of some HTTP/2 implementations that do not properly limit or sanitize the amount of CONTINUATION frames sent in a single stream. An attacker that can send packets to a target server …

READ MORE

Leave a Reply

Your email address will not be published. Required fields are marked *