CVE-2023-32731

Name
CVE-2023-32731
Description
When gRPC HTTP2 stack raised a header size exceeded error, it skipped parsing the rest of the HPACK frame. This caused any HPACK table mutations to also be skipped, resulting in a desynchronization of HPACK tables between sender and receiver. If leveraged, say, between a proxy and a backend, this could lead to requests from the proxy being interpreted as containing headers from different proxy clients - leading to an information leak that can be used for privilege escalation or data exfiltration. We recommend upgrading beyond the commit contained inĀ  https://github.com/grpc/grpc/pull/33005 https://github.com/grpc/grpc/pull/33005
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/grpc/grpc/pull/32309
MISC https://github.com/grpc/grpc/pull/33005

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:* grpc >= 1.53.0 < 1.55.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
grpc 3.18-community 1.54.2-r0 wener <wenermail@gmail.com> possibly vulnerable