Description

A carefully crafted invalid TLS handshake can cause Apache Traffic Server (ATS) to segfault. This affects version 6.2.2. To resolve this issue users running 6.2.2 should upgrade to 6.2.3 or later versions.

Remediation

References

CVE-2018-8022

Related Vulnerabilities

OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0737)

MySQL CVE-2021-35643 Vulnerability (CVE-2021-35643)

WordPress Plugin Simple Job Board Cross-Site Scripting (2.4.3)

Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-1134)

Oracle JRE CVE-2013-2435 Vulnerability (CVE-2013-2435)

Severity

High

Classification

CVE-2018-8022 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities