Lucene search
ApacheCVELIST:CVE-2022-40743HistoryDec 19, 2022 - 11:06 a.m.
CVE-2022-40743 Apache Traffic Server: Security issues with the xdebug plugin
2022-12-1911:06:14
CWE-79
apache
www.cve.org
3
apache traffic server
xdebug plugin
input validation vulnerability
cross site scripting
cache poisoning
upgrade
version 9.1.4
Improper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3. Users should upgrade to 9.1.4 or later versions.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Traffic Server",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "9.1.3",
"status": "affected",
"version": "9.0.0",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2022-40743
2022-12-19 12:15:11
prion
prion
Input validation
2022-12-19 12:15:00
ubuntucve
ubuntucve
CVE-2022-40743
2022-12-19 00:00:00
cve
cve
CVE-2022-40743
2022-12-19 12:15:11
openvas
openvas
Apache Traffic Server (ATS) 9.x < 9.1.3 XSS Vulnerability
2022-12-20 00:00:00
Fedora: Security Advisory for trafficserver (FEDORA-2022-489ea47e69)
2022-12-30 00:00:00
Fedora: Security Advisory for trafficserver (FEDORA-2022-62b61a8542)
2022-12-30 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2023-01-04 04:31:38
cnvd
cnvd
Apache Traffic Server Cross-Site Scripting Vulnerability (CNVD-2023-03922)
2022-12-21 00:00:00
osv
osv
CVE-2022-40743
2022-12-19 12:15:11
nvd
nvd
CVE-2022-40743
2022-12-19 12:15:11
fedora
fedora
[SECURITY] Fedora 36 Update: trafficserver-9.1.4-1.fc36
2022-12-29 01:16:05
[SECURITY] Fedora 37 Update: trafficserver-9.1.4-1.fc37
2022-12-29 01:10:11
nessus
nessus
Fedora 36 : trafficserver (2022-489ea47e69)
2022-12-29 00:00:00