What the vulnerability does

01Description

A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings (specifically a circular dependency). This affects Proxygen prior to v2018.12.31.00.

Key dates

02Disclosure timeline

December 31, 2018 CVE published
May 6, 2025 Record updated