Lucene search
China National Vulnerability DatabaseCNVD-2023-03922HistoryDec 21, 2022 - 12:00 a.m.
Apache Traffic Server Cross-Site Scripting Vulnerability (CNVD-2023-03922)
2022-12-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
apache
traffic server
xss
vulnerability
apache foundation
cross-site scripting
cache poisoning
attackers
0.003 Low
EPSS
Percentile
67.9%
Apache Traffic Server (ATS) is a set of scalable HTTP proxy and cache servers from the Apache Foundation. Apache Traffic Server suffers from a cross-site scripting vulnerability that can be exploited by attackers to cause cross-site scripting and cache poisoning attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache apache traffic server >=8.0.0, | le | 8.1.5 | |
| apache apache traffic server >=9.0.0, | le | 9.1.3 |
Related
veracode
veracode
Cross-site Scripting (XSS)
2023-01-04 04:31:38
openvas
openvas
Apache Traffic Server (ATS) 9.x < 9.1.3 XSS Vulnerability
2022-12-20 00:00:00
Fedora: Security Advisory for trafficserver (FEDORA-2022-489ea47e69)
2022-12-30 00:00:00
Fedora: Security Advisory for trafficserver (FEDORA-2022-62b61a8542)
2022-12-30 00:00:00
cve
cve
CVE-2022-40743
2022-12-19 12:15:11
prion
prion
Input validation
2022-12-19 12:15:00
ubuntucve
ubuntucve
CVE-2022-40743
2022-12-19 00:00:00
nvd
nvd
CVE-2022-40743
2022-12-19 12:15:11
osv
osv
CVE-2022-40743
2022-12-19 12:15:11
debiancve
debiancve
CVE-2022-40743
2022-12-19 12:15:11
cvelist
cvelist
CVE-2022-40743 Apache Traffic Server: Security issues with the xdebug plugin
2022-12-19 11:06:14
nessus
nessus
Fedora 36 : trafficserver (2022-489ea47e69)
2022-12-29 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: trafficserver-9.1.4-1.fc37
2022-12-29 01:10:11
[SECURITY] Fedora 36 Update: trafficserver-9.1.4-1.fc36
2022-12-29 01:16:05