Description

Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

Remediation

References

CVE-2021-37150

Related Vulnerabilities

WordPress Plugin Advanced Ads-Ad Manager & AdSense Cross-Site Scripting (1.17.3)

Ruby on Rails Other Vulnerability (CVE-2021-22904)

WordPress Plugin WP Prayer Multiple Cross-Site Request Forgery Vulnerabilities (1.6.5)

WordPress Plugin Analytics Stats Counter Statistics PHP Object Injection (1.2.2.5)

Drupal Core 7.x Directory Traversal (7.0 - 7.81)

Severity

High

Classification

CVE-2021-37150 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities