Description

The ATS ESI plugin has a memory disclosure vulnerability. If you are running the plugin please upgrade. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.

Remediation

References

CVE-2020-17508

Related Vulnerabilities

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9507)

WordPress Plugin wp superb Slideshow Information Disclosure (2.4)

Moodle Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-48896)

WordPress Plugin Booking Calendar-Clockwork SMS Cross-Site Scripting (1.0.5)

OpenSSL Resource Management Errors Vulnerability (CVE-2016-2109)

Severity

High

Classification

CVE-2020-17508 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities