Home > Vulnerability Database > WS-2023-0264

Mend.io Vulnerability Database

WS-2023-0264

Date: August 19, 2025

An issue in s2n-quic results in the endpoint shutting down due to a combination of peer-initiated connection migration and duplicate new connection ID frames being received. No AWS services are affected by this issue, and customers of AWS services do not need to take action. The patch is included in v1.25.0.

Language: RUST

Severity Score

6.4

Related Resources (4)

Url: https://github.com/aws/s2n-quic/security/advisories/GHSA-rfhg-rjfp-9q8q

Url: https://github.com/aws/s2n-quic/commit/73a814240c5db6fae261a6e4ab567b0b094a35db

Url: https://github.com/aws/s2n-quic

Url: https://www.mend.io/vulnerability-database/WS-2023-0264

Severity Score

6.4

Weakness Type (CWE)

Uncontrolled Resource Consumption

CWE-400

CVSS v3.1

Base Score:	6.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

WS-2023-0264

Date: August 19, 2025

Language: RUST

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?