Lucene search
+L

11 matches found

OSV
OSV
added 2025/07/25 1:17 p.m.3 views

OESA-2025-1904 trafficserver security update

Apache Traffic Server is an OpenSource HTTP / HTTPS / HTTP/2 / QUIC reverse, forward and transparent proxy and cache. Security Fixes: Apache Traffic Server ATS is a set of scalable HTTP proxy and caching servers from the Apache Foundation in the United States. Apache Traffic Server ATS versions...

7.5CVSS7AI score0.00632EPSS
Exploits0References3
OSV
OSV
added 2025/07/04 2:43 p.m.5 views

OESA-2025-1732 trafficserver security update

Apache Traffic Server is an OpenSource HTTP / HTTPS / HTTP/2 / QUIC reverse, forward and transparent proxy and cache. Security Fixes: Apache Traffic Server ATS is a set of scalable HTTP proxy and caching servers from the Apache Foundation in the United States. Apache Traffic Server ATS versions...

7.5CVSS7AI score0.00632EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/06/27 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-ed452354bb)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.00632EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/25 12:0 a.m.4 views

Debian: Security Advisory (DSA-5948-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.00632EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/19 2:20 p.m.7 views

CVE-2025-31698

A flaw was found in trafficserver. Access control lists ACLs configured within ipallow.config or remap.config incorrectly utilize IP addresses, failing to account for those provided by the PROXY protocol. This can allow an attacker to bypass intended access restrictions by manipulating the source...

7.5CVSS7.3AI score0.00448EPSS
Exploits0References4
NVD
NVD
added 2025/06/19 10:15 a.m.5 views

CVE-2025-31698

ACL configured in ipallow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting proxy.config.acl.subjects to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects...

7.5CVSS0.00448EPSS
Exploits0References1
OSV
OSV
added 2025/06/19 10:15 a.m.3 views

UBUNTU-CVE-2025-31698

ACL configured in ipallow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting proxy.config.acl.subjects to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects...

7.5CVSS5.8AI score0.00448EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/06/19 10:7 a.m.17 views

CVE-2025-31698

ACL configured in ipallow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting proxy.config.acl.subjects to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects...

7.5CVSS5.2AI score0.00448EPSS
Exploits0
Cvelist
Cvelist
added 2025/06/19 10:7 a.m.13 views

CVE-2025-31698 Apache Traffic Server: Client IP address from PROXY protocol is not used for ACL

ACL configured in ipallow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting proxy.config.acl.subjects to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects...

0.00448EPSS
Exploits0References1
CVE
CVE
added 2025/06/19 10:7 a.m.51 views

CVE-2025-31698

Summary : CVE-2025-31698 affects Apache Traffic Server (ATS). The ACLs configured in ip_allow.config or remap.config may use IP addresses not provided by the PROXY protocol when ATS is configured to accept PROXY, exposing confidentiality. Affected ranges include 10.0.0–10.0.6 and 9.0.0–9.2.10. Ro...

7.5CVSS6.5AI score0.00448EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/06/19 10:7 a.m.6 views

CVE-2025-31698 Apache Traffic Server: Client IP address from PROXY protocol is not used for ACL

ACL configured in ipallow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting proxy.config.acl.subjects to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects...

7.5CVSS7.1AI score0.00448EPSS
Exploits0References3
Rows per page
Query Builder