Apache Traffic Server (ATS) is the United States Apache (Apache) Foundation’s set of scalable HTTP proxy and caching server. Apache Traffic Server suffers from an input validation error vulnerability that stems from an HTTP/2 frame formatting error and is vulnerable to HTTP/2 and s3 authentication plugin attacks. An attacker could exploit this vulnerability to cause a denial of service.