Description

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.

Remediation

References

CVE-2021-37147

Related Vulnerabilities

WordPress Plugin WP Editor SQL Injection (1.2.6.3)

WordPress Plugin Conversador Cross-Site Scripting (2.61)

Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-44224)

WordPress Plugin LB Mixed Slideshow 'upload.php' Arbitrary File Upload (1.0)

Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-8446)

Severity

High

Classification

CVE-2021-37147 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities