CVE-2026-49160
HIGH WAF: Medium
CVSS 7.5
Published: 2026-06-09
CWE-400
Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_10_1607 | up to 10.0.14393.9234 |
| microsoft | windows_10_1607 | up to 10.0.14393.9234 |
| microsoft | windows_10_1809 | up to 10.0.17763.8880 |
| microsoft | windows_10_1809 | up to 10.0.17763.8880 |
| microsoft | windows_10_21h2 | up to 10.0.19044.7417 |
| microsoft | windows_10_21h2 | up to 10.0.19044.7417 |
| microsoft | windows_10_21h2 | up to 10.0.19044.7417 |
| microsoft | windows_10_22h2 | up to 10.0.19045.7417 |
| microsoft | windows_10_22h2 | up to 10.0.19045.7417 |
| microsoft | windows_10_22h2 | up to 10.0.19045.7417 |
References
- msrc.microsoft.com (Vendor Advisory)