Description

Improper Input Validation vulnerability in HTTP/2 header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

Remediation

References

CVE-2022-31779

Related Vulnerabilities

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2010-1150)

WordPress Plugin WP Idea Stream Cross-Site Scripting (2.1.1)

Apache version up to 1.3.33 htpasswd local overflow

WordPress Plugin G Auto-Hyperlink SQL Injection (1.0.1)

WordPress Plugin Facebook Opengraph Meta 'all_meta.php' SQL Injection (1.0)

Severity

High

Classification

CVE-2022-31779 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities