All 2 CVE vulnerabilities found in golang.org/x/net/http2, with AI-generated Chinese analysis, references, and POCs.
Vendor: golang.org/x/net
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33814 | Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net | 7.5AI | HighAI | 2026-05-07 |
| CVE-2026-27141 | Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net | 7.5AI | HighAI | 2026-02-26 |
All 2 known CVE vulnerabilities affecting golang.org/x/net/http2 with full Chinese analysis, references, and POCs where available.