Description

Improper Input Validation vulnerability in handling the Transfer-Encoding header of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 8.0.0 to 9.0.2.

Remediation

References

CVE-2022-31778

Related Vulnerabilities

e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-2416)

WordPress Plugin Gallery-Photo Albums-Portfolio Cross-Site Scripting (1.2.25)

WordPress Plugin External Links-nofollow, noopener & new window Cross-Site Scripting (2.55)

WordPress Plugin Gmedia Photo Gallery Multiple Cross-Site Scripting Vulnerabilities (1.18.4)

WordPress Plugin Import XML and RSS Feeds Remote Code Execution (2.1.4)

Severity

High

Classification

CVE-2022-31778 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities