CVE-2023-38522 | Apache Traffic Server up to 8.1.10/9.2.4 Field Name request smuggling

Posted by Angelo Barbosa | Jul 25, 2024 | CVE

A vulnerability, which was classified as critical, was found in Apache Traffic Server up to 8.1.10/9.2.4. Affected is an unknown function of the component Field Name Handler. The manipulation leads to http request smuggling.

This vulnerability is traded as CVE-2023-38522. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38522 | Apache Traffic Server up to 8.1.10/9.2.4 Field Name request smuggling

Related Posts

CVE-2024-35817 | Linux Kernel up to 5.15.153/6.1.83/6.6.23/6.7.11/6.8.2 amdgpu_ttm_gart_bind memory corruption

CVE-2023-51493 | Howard Ehrenberg Custom Post Carousels with Owl Plugin up to 1.4.6 on WordPress cross site scripting

CVE-2024-36302 | Trend Micro Apex One Local Privilege Escalation

CVE-2024-0873 | Watu Quiz Plugin up to 3.4.1 on WordPress cross site scripting