Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-35161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache...

9.1CVSS7.1AI score0.0097EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/27 12:0 a.m.22 views

Debian dla-3897 : trafficserver - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3897 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3897-1 [email protected]...

9.1CVSS7.3AI score0.01085EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2024/09/09 6:41 a.m.23 views

CVE-2024-35161

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4...

7.5CVSS7AI score0.0097EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/26 12:0 a.m.31 views

Debian dsa-5758 : trafficserver - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5758 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5758-1 [email protected] https://www.debian.org/securit...

9.1CVSS7.3AI score0.01085EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2024/08/06 12:0 a.m.16 views

Fedora: Security Advisory (FEDORA-2024-2243c5abee)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.9AI score0.01085EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/08/06 12:0 a.m.20 views

Fedora: Security Advisory (FEDORA-2024-77fe791124)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.9AI score0.01085EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/05 12:0 a.m.22 views

Fedora 39 : trafficserver (2024-2243c5abee)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-2243c5abee advisory. Update to upstream 9.2.5 Resolves CVE-2023-38522, CVE-2024-35161, CVE-2024-35296 Tenable has extracted the preceding description block directly from...

9.1CVSS7.3AI score0.01085EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/05 12:0 a.m.15 views

Fedora 40 : trafficserver (2024-77fe791124)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-77fe791124 advisory. Update to upstream 9.2.5 Resolves CVE-2023-38522, CVE-2024-35161, CVE-2024-35296 Tenable has extracted the preceding description block directly from...

9.1CVSS7.3AI score0.01085EPSS
Exploits0References4
NVD
NVD
added 2024/07/26 10:15 a.m.28 views

CVE-2024-35161

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4...

9.1CVSS0.0097EPSS
Exploits0References2
CVE
CVE
added 2024/07/26 9:10 a.m.97 views

CVE-2024-35161

CVE-2024-35161 affects Apache Traffic Server. Versions 8.0.0–8.1.10 and 9.0.0–9.2.4 forward malformed HTTP chunked trailer sections to origin servers, enabling potential request smuggling and, if the origin is vulnerable, cache poisoning. Debian and Tenable advisories confirm multiple vendors iss...

9.1CVSS6.6AI score0.0097EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/07/26 9:10 a.m.19 views

CVE-2024-35161 Apache Traffic Server: Incomplete check for chunked trailer section allows request smuggling

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4...

9.1CVSS5.9AI score0.0097EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/07/26 9:10 a.m.31 views

CVE-2024-35161 Apache Traffic Server: Incomplete check for chunked trailer section allows request smuggling

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4...

7.2AI score0.0097EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/26 9:10 a.m.27 views

CVE-2024-35161 Apache Traffic Server: Incomplete check for chunked trailer section allows request smuggling

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4...

0.0097EPSS
Exploits0References1
Rows per page
Query Builder