How severe is CVE-2021-37147?

CVE-2021-37147 has a CVSS v3 score of 7.5 (HIGH).

CVE-2021-37147

Name: debian_linux
Author: debian

7.5HIGH

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.

公開日: 11/3/2021更新日: 11/21/2024

説明

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.

AI分析AIによる分析

影響を受ける製品

apachetraffic_server

debiandebian_linux

10.0

debiandebian_linux

11.0

参照

https://lists.apache.org/thread/k01797hyncx53659wr3o72s5cvkc3164
Mailing ListPatchVendor Advisory
https://www.debian.org/security/2022/dsa-5153
Third Party Advisory
https://lists.apache.org/thread/k01797hyncx53659wr3o72s5cvkc3164
Mailing ListPatchVendor Advisory
https://www.debian.org/security/2022/dsa-5153
Third Party Advisory