Lucene search

GoogleOSV:CVE-2021-44040

HistoryMar 23, 2022 - 2:15 p.m.

CVE-2021-44040

2022-03-2314:15:07

Google

osv.dev

cve-2021-44040

vulnerability

input validation

apache traffic server

attacker

invalid requests

software

AI Score

6.6

Confidence

High

EPSS

0.002

Percentile

52.0%

JSON

Improper Input Validation vulnerability in request line parsing of Apache Traffic Server allows an attacker to send invalid requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.3 and 9.0.0 to 9.1.1.

References

lists.apache.org/thread/zblwzcfs9ryhwjr89wz4osw55pxm6dx6

www.debian.org/security/2022/dsa-5153