Description

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.0.1.

Remediation

References

CVE-2021-37148

Related Vulnerabilities

Plone CMS Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-28734)

WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.3.0)

Lighttpd Inadequate Encryption Strength Vulnerability (CVE-2013-4508)

Django CVE-2024-45231 Vulnerability (CVE-2024-45231)

WordPress Plugin ZooEffect for Video player Photo Gallery Slideshow jQuery and audio/music/podcast-HTML Cross-Site Scripting (1.01)

Severity

High

Classification

CVE-2021-37148 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities