CVE-2024-53868
Essential information
- Published
- 03/04/2025 09:15
- Modified
- 03/04/2025 09:15
- Author
- —
- Creator
- —
- CISA KEV
- No
- CWE
- —
- CVSS vector
- — — —
Description
Apache Traffic Server allows request smuggling if chunked messages are malformed.
This issue affects Apache Traffic Server: from 9.2.0 through 9.2.9, from 10.0.0 through 10.0.4.
Users are recommended to upgrade to version 9.2.10 or 10.0.5, which fixes the issue.
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| apache / traffic server | cpe:2.3:a:apache:traffic_server:9.2.0-9.2.9:*:*:*:*:*:*:* |
| apache / traffic server | cpe:2.3:a:apache:traffic_server:10.0.0-10.0.4:*:*:*:*:*:*:* |