Skip to content
/ CVE-2024-27316 Public

Proof of concept (PoC) for CVE-2024-27316 (tested), CVE-2024-30255 (untested), CVE-2024-31309 (untested), CVE-2024-28182 (untested), CVE-2024-2653 (untested) and CVE-2024-27919 (untested)

License

GPL-2.0 license
10 stars 3 forks Branches Tags Activity
Star
Notifications

lockness-Ko/CVE-2024-27316

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

.github/workflows

.github/workflows

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

main.go

main.go

 
 

Repository files navigation

CVE-2024-27316

I decided to call this vulnerability specifically "CVE-2024-27316" since I have tested it against this vulnerability. The underlying flaw effects other CVEs so I thought I'd mention those with the hope that others could test and modify this PoC :)

This PoC currently only works against unencrypted http/2 servers.

Sources:

Running

Building:

go build

Running

./cve-2024-27316 -t 127.0.0.1:80 -p http -i 8192
./cve-2024-27316 -t 127.0.0.1:443 -p https -i 8192

About

Proof of concept (PoC) for CVE-2024-27316 (tested), CVE-2024-30255 (untested), CVE-2024-31309 (untested), CVE-2024-28182 (untested), CVE-2024-2653 (untested) and CVE-2024-27919 (untested)

Topics

cve-2024-27316 cve-2024-30255 cve-2024-31309 cve-2024-28182 cve-2024-2653 cve-2024-27919

Resources

Readme

License

GPL-2.0 license
Activity

Stars

10 stars

Watchers

2 watching

Forks

3 forks
Report repository

Contributors 2

Languages