Description

There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and chunked encoding. Upgrade to versions 7.1.9 and 8.0.6 or later versions.

Remediation

References

CVE-2019-17565

Related Vulnerabilities

WordPress Plugin WP JS Cross-Site Scripting (2.0.6)

WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Security Bypass (9.3.2)

IBMHttpServer CVE-2012-5955 Vulnerability (CVE-2012-5955)

Joomla! Core 3.x.x Directory Traversal (3.2.0 - 3.4.5)

Drupal CVE-2022-25278 Vulnerability (CVE-2022-25278)

Severity

Critical

Classification

CVE-2019-17565 CWE-444 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities