Description
Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Affected products
References
- MAILING_LISThttps://lists.apache.org/thread/jsl6dfdgs1mjjo1mbtyflyjr7xftswhc
- MAILING_LISThttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC/
- MAILING_LISThttps://lists.debian.org/debian-lts-announce/2023/09/msg00042.html
- VENDOR_ADVISORYhttps://www.debian.org/security/2023/dsa-5549