CVE-2024-50306 | Apache Traffic Server up to 9.2.5/10.0.1 dropped privileges

Inserito da Angelo Barbosa | Nov 13, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Apache Traffic Server up to 9.2.5/10.0.1. Affected by this issue is some unknown functionality. The manipulation leads to improper check for dropped privileges.

This vulnerability is handled as CVE-2024-50306. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50306 | Apache Traffic Server up to 9.2.5/10.0.1 dropped privileges

Post correlati

CVE-2023-4855 | Lenovo SMM/SMM2/FPC IPMI os command injection

CVE-2024-10069 | ESAFENET CDG 5 MailDecryptApplicationService.java actionPassMainApplication id sql injection

CVE-2023-6572 | gradio information disclosure

CVE-2024-32554 | Knight Lab Timeline Plugin up to 3.9.3.4 on WordPress cross site scripting