CVE-2024-50306 | Apache Traffic Server up to 9.2.5/10.0.1 dropped privileges

Inserito da Angelo Barbosa | Nov 13, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Apache Traffic Server up to 9.2.5/10.0.1. Affected by this issue is some unknown functionality. The manipulation leads to improper check for dropped privileges.

This vulnerability is handled as CVE-2024-50306. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50306 | Apache Traffic Server up to 9.2.5/10.0.1 dropped privileges

Post correlati

CVE-2024-2462 | Hitachi Energy FOXMAN-UN/FOX61x/FOXCST/UNEM/XMC20/ECST certificate validation

CVE-2023-6120 | Welcart e-Commerce Plugin up to 2.9.6 on WordPress path traversal

CVE-2024-2429 | Salon Booking System Plugin up to 9.6.5 on WordPress Setting cross-site request forgery

CVE-2023-32337 | IBM Maximo Spatial Asset Management 8.10 server-side request forgery (XFDB-255288)