Traffic Server Improper Input Validation Vulnerability
CVE-2024-38479

Currently unrated

Key Information:

Vendor: Apache
Status: Apache Traffic Server
Vendor: CVE Published:; 14 November 2024

Summary

Improper Input Validation vulnerability in Apache Traffic Server.

This issue affects Apache Traffic Server: from 8.0.0 through 8.1.11, from 9.0.0 through 9.2.5.

Users are recommended to upgrade to version 9.2.6, which fixes the issue, or 10.0.2, which does not have the issue.

Affected Version(s)

Apache Traffic Server 8.0.0 <= 8.1.11

Apache Traffic Server 9.0.0 <= 9.2.5

References

https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh...

vendor-advisory

Timeline

Vulnerability published
Nov 14, 2024
Vulnerability Reserved
Jun 17, 2024

.