Lucene search
China National Vulnerability DatabaseCNVD-2021-84820HistoryNov 04, 2021 - 12:00 a.m.
Apache Traffic Server Improper Input Validation Vulnerability
2021-11-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
apache traffic server
input validation
vulnerability
header parsing
exploit
smuggle requests
EPSS
0.002
Percentile
55.9%
Apache Traffic Server, referred to as ATS or TS, is a high-performance, modular HTTP proxy and caching server. an improper input validation vulnerability exists in header parsing in Apache Traffic Server versions 8.0.0 - 8.1.2, 9.0.0 - 9.1.0. An attacker could exploit this vulnerability to smuggle requests.
Related
veracode
veracode
Cross-site Request Forgery (CSRF)
2021-11-11 05:53:34
ubuntucve
ubuntucve
CVE-2021-37147
2021-11-03 00:00:00
cve
cve
CVE-2021-37147
2021-11-03 16:15:07
prion
prion
Input validation
2021-11-03 16:15:00
debiancve
debiancve
CVE-2021-37147
2021-11-03 16:15:07
nvd
nvd
CVE-2021-37147
2021-11-03 16:15:07
cvelist
cvelist
CVE-2021-37147 Request Smuggling - LF line ending
2021-11-03 15:20:19
osv
osv
CVE-2021-37147
2021-11-03 16:15:07
trafficserver - security update
2022-05-30 00:00:00
openvas
openvas
Apache Traffic Server (ATS) 8.0.0 < 8.1.3, 9.0.0 < 9.1.1 Multiple Vulnerabilities
2021-11-05 00:00:00
Debian: Security Advisory (DSA-5153-1)
2022-06-01 00:00:00
nessus
nessus
Apache Traffic Server 8.x < 8.1.3 / 9.x < 9.1.1 Multiple Vulnerabilities
2023-11-07 00:00:00
Debian DSA-5153-1 : trafficserver - security update
2022-05-31 00:00:00
debian
debian
[SECURITY] [DSA 5153-1] trafficserver security update
2022-05-30 18:01:41