Description

Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

Remediation

References

CVE-2021-37150

Related Vulnerabilities

Oracle JRE CVE-2012-1716 Vulnerability (CVE-2012-1716)

b2evolution Improper Input Validation Vulnerability (CVE-2017-1000423)

PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32028)

Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.10.6)

PHP Incorrect Calculation of Buffer Size Vulnerability (CVE-2008-0599)

Severity

High

Classification

CVE-2021-37150 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities