Lucene search
China National Vulnerability DatabaseCNVD-2021-84821HistoryNov 04, 2021 - 12:00 a.m.
Apache Traffic Server Improper Input Validation Vulnerability (CNVD-2021-84821)
2021-11-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.002 Low
EPSS
Percentile
52.2%
Apache Traffic Server, referred to as ATS or TS, is a high-performance, modular HTTP proxy and caching server. an improper input validation vulnerability exists in the header parsing in Apache Traffic Server versions 8.0.0-8.1.2, 9.0.0-9.0.1. An attacker could exploit this vulnerability to smuggle requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Apache Apache Traffic Server >=8.0.0, | le | 8.1.2 | |
| Apache Apache Traffic Server >=9.0.0, | le | 9.0.1 |
Related
ubuntucve
ubuntucve
CVE-2021-37148
2021-11-03 00:00:00
nvd
nvd
CVE-2021-37148
2021-11-03 16:15:08
debiancve
debiancve
CVE-2021-37148
2021-11-03 16:15:08
veracode
veracode
Request Smuggling
2021-11-11 05:53:37
prion
prion
Input validation
2021-11-03 16:15:00
osv
osv
CVE-2021-37148
2021-11-03 16:15:08
trafficserver - security update
2022-05-30 00:00:00
cve
cve
CVE-2021-37148
2021-11-03 16:15:08
cvelist
cvelist
CVE-2021-37148 Request Smuggling - transfer encoding validation
2021-11-03 15:20:20
openvas
openvas
Apache Traffic Server (ATS) 8.0.0 < 8.1.3, 9.0.0 < 9.1.1 Multiple Vulnerabilities
2021-11-05 00:00:00
Debian: Security Advisory (DSA-5153-1)
2022-06-01 00:00:00
nessus
nessus
Apache Traffic Server 8.x < 8.1.3 / 9.x < 9.1.1 Multiple Vulnerabilities
2023-11-07 00:00:00
Debian DSA-5153-1 : trafficserver - security update
2022-05-31 00:00:00
debian
debian
[SECURITY] [DSA 5153-1] trafficserver security update
2022-05-30 18:01:41