PortSwigger researchers have taken the concept behind the HTTP2 Rapid Reset attack that was being used to launch DDoS attacks and have applied it in a manner that allows threat actors to perform remote race condition attacks with just one single TCP package

https://portswigger.net/research/the-single-packet-attack-making-remote-race-conditions-local

https://files.mastodon.social/media_attachments/files/111/279/061/410/194/748/original/2cf4fd5d65e2cfca.png