How severe is CVE-2021-37147?

CVE-2021-37147 has a CVSS v3 score of 7.5 (HIGH).

CVE-2021-37147

Name: debian_linux
Author: debian

7.5HIGH

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.

发布于: 11/3/2021更新于: 11/21/2024

描述

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.

AI分析AI驱动

受影响产品

apachetraffic_server

debiandebian_linux

10.0

debiandebian_linux

11.0

参考资料

https://lists.apache.org/thread/k01797hyncx53659wr3o72s5cvkc3164
Mailing ListPatchVendor Advisory
https://www.debian.org/security/2022/dsa-5153
Third Party Advisory
https://lists.apache.org/thread/k01797hyncx53659wr3o72s5cvkc3164
Mailing ListPatchVendor Advisory
https://www.debian.org/security/2022/dsa-5153
Third Party Advisory