How to mitigate the HTTP/2 Rapid Reset vulnerability (CVE-2023-44487) on NetScaler
Article ID: CTX582159
Updated On:
Description
Advise how to mitigate the HTTP/2 Rapid Reset vulnerability on NetScaler.
Instructions
Only devices with HTTP2 enabled are impacted, as HTTP/2 is not enabled by default; it must be specifically enabled on a HTTP profile.https://www.netscaler.com/blog/news/how-to-mitigate-the-http-2-rapid-reset-vulnerability-on-netscaler/
To validate if HTTP2 is enabled on any profiles, follow the instructions in: https://support.citrix.com/article/CTX582525/how-to-check-if-http2-is-being-used-in-the-netscaler-and-if-so-by-which-entities
Issue/Introduction
HTTP/2 is not enabled by default. It must be specifically enabled on a HTTP profile. Only devices with HTTP2 enabled are impacted.
Additional Information
HTTP/2 is not enabled by default. It must be specifically enabled on a HTTP profile.
https://www.netscaler.com/blog/news/how-to-mitigate-the-http-2-rapid-reset-vulnerability-on-netscaler/
https://www.netscaler.com/blog/news/how-to-mitigate-the-http-2-rapid-reset-vulnerability-on-netscaler/
Was this article helpful?
Yes
No
Powered by
