Traffic Server Improper Input Validation Vulnerability
CVE-2024-38479

Currently unrated

Key Information:

Vendor

Apache
Status
Apache Traffic Server
Vendor
CVE Published:
14 November 2024

What is CVE-2024-38479?

Improper Input Validation vulnerability in Apache Traffic Server.

This issue affects Apache Traffic Server: from 8.0.0 through 8.1.11, from 9.0.0 through 9.2.5.

Users are recommended to upgrade to version 9.2.6, which fixes the issue, or 10.0.2, which does not have the issue.

Affected Version(s)

Apache Traffic Server 8.0.0 <= 8.1.11

Apache Traffic Server 9.0.0 <= 9.2.5

References

https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh...
vendor-advisory

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.