Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-8040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic...

5.3CVSS6.1AI score0.08589EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2018/12/26 12:0 a.m.7 views

Apache Traffic Server ESI Plugin Cookie Header Information Disclosure (CVE-2018-8040)

An information disclosure vulnerability exists in Apache Traffic Server. The vulnerability is due to improper restriction of access to the Cookie HTTP header within the ESI plugin. Successful exploitation of this vulnerability could lead to disclosure of sensitive information...

5CVSS0.4AI score0.08589EPSS
Exploits0
Debian
Debian
added 2018/08/31 9:51 p.m.28 views

[SECURITY] [DSA 4282-1] trafficserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4282-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 31, 2018 https://www.debian.org/security/faq -...

7.5CVSS7.1AI score0.08589EPSS
Exploits0
NVD
NVD
added 2018/08/29 1:29 p.m.21 views

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server ATS versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions...

5.3CVSS5.5AI score0.08589EPSS
Exploits0References5
OSV
OSV
added 2018/08/29 1:29 p.m.24 views

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server ATS versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions...

5.3CVSS7.5AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2018/08/29 1:29 p.m.25 views

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server ATS versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions...

5.3CVSS6.5AI score0.08589EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/08/29 1:0 p.m.20 views

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server ATS versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions...

6.1AI score0.08589EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2018/08/29 1:0 p.m.26 views

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server ATS versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions...

5.3CVSS5.5AI score0.08589EPSS
Exploits0
Rows per page
Query Builder