A HTTP/2 vulnerability was discovered by Cloudfare. In late August 2023, Cloudflare discovered a zero-day vulnerability, developed by an unknown threat actor.

Source: Security Magazine