Description

A carefully crafted invalid TLS handshake can cause Apache Traffic Server (ATS) to segfault. This affects version 6.2.2. To resolve this issue users running 6.2.2 should upgrade to 6.2.3 or later versions.

Remediation

References

CVE-2018-8022

Related Vulnerabilities

PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-10915)

Moodle Improper Authentication Vulnerability (CVE-2025-3634)

phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-2346)

Apache Tomcat Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2026-29146)

MySQL CVE-2018-3203 Vulnerability (CVE-2018-3203)

Severity

High

Classification

CVE-2018-8022 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities