CVE-2021-27577
7.5HIGHIncorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0
Опубликовано: 6/29/2021Обновлено: 11/21/2024
Описание
Incorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.
ИИ-АнализНа базе ИИ
Затронутые продукты
apachetraffic_server
apachetraffic_server
apachetraffic_server
debiandebian_linux
8.0
Ссылки
- https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cusers.trafficserver.apache.org%3EMailing ListVendor Advisory
- https://www.debian.org/security/2021/dsa-4957Third Party Advisory
- https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cusers.trafficserver.apache.org%3EMailing ListVendor Advisory
- https://www.debian.org/security/2021/dsa-4957Third Party Advisory