CVE-2022-28129

Опубликовано: 10 авг. 2022

Источник: debian

EPSS Низкий

Описание

Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
trafficserver	fixed	9.1.3+ds-1		package

Примечания

https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21

EPSS

Процентиль: 89%

0.04574

Низкий

Связанные уязвимости

CVE-2022-28129

CVSS3: 7.5

ubuntu

больше 3 лет назад

Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

CVE-2022-28129

CVSS3: 7.5

nvd

больше 3 лет назад

Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

GHSA-6gv5-5975-mh35

CVSS3: 7.5

github

больше 3 лет назад

Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

EPSS

Процентиль: 89%

0.04574

Низкий