Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

Apache Traffic ServerApache Traffic Server: Request smuggling via pipelining after a chunked message body

medium
6.3
First published (updated )
CVE-2024-38311

Apache Traffic ServerApache Traffic Server: Intercept plugins are not access controlled

medium
6.3
First published (updated )
CVE-2024-56195

Apache Traffic ServerApache Traffic Server: ACL is not fully compatible with older versions

medium
6.3
First published (updated )
CVE-2024-56196

Apache Traffic ServerApache Traffic Server: Expect header field can unreasonably retain resource

medium
4.3
First published (updated )
CVE-2024-56202

[ANNOUNCE] ATS is vulnerable to malformed quests, and also has ACL issues

First published (updated )
https://seclists.org/oss-sec/2025/q1/172

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache Traffic ServerApache Traffic Server: Incomplete field name check allows request smuggling

high
7.5
First published (updated )
CVE-2023-38522

Apache Traffic ServerApache Traffic Server: Incomplete check for chunked trailer section allows request smuggling

critical
9.1
First published (updated )
CVE-2024-35161

Red Hat FedoraApache Traffic Server: Malformed http/2 frames can cause an abort

high
7.5
First published (updated )
CVE-2023-39456

Apache Traffic ServerApache Traffic Server: s3_auth plugin problem with hash calculation

high
7.5
First published (updated )
CVE-2023-41752

CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations

First published (updated )
https://seclists.org/oss-sec/2023/q4/95

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations

First published (updated )
https://seclists.org/oss-sec/2023/q4/90

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

Apache Traffic ServerApache Traffic Server: Differential fuzzing for HTTP request parsing discrepancies

critical
9.1
First published (updated )
CVE-2023-33934

Apache Traffic ServerApache Traffic Server: Invalid Range header causes a crash

high
7.5
First published (updated )
CVE-2022-47185

Debian LinuxApache Traffic Server: Configuration option to block the PUSH method in ATS didn't work

high
7.5
First published (updated )
CVE-2023-30631

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache Traffic ServerApache Traffic Server: s3_auth plugin problem with hash calculation

high
7.5
First published (updated )
CVE-2023-33933

debian/trafficserverApache Traffic Server: The TRACE method can be use to disclose network information

high
7.5
First published (updated )
CVE-2022-47184

Apache Traffic ServerApache Traffic Server: Security issues with the xdebug plugin

medium
6.1
First published (updated )
CVE-2022-40743

Apache Traffic ServerApache Traffic Server: Improperly reading the client requests

medium
5.3
First published (updated )
CVE-2022-37392

Apache Traffic ServerApache Traffic Server: Improperly handled requests can cause crashes in specific plugins

high
7.5
First published (updated )
CVE-2022-32749

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache Traffic ServerImproper HTTP/2 scheme and method validation

high
7.5
First published (updated )
CVE-2022-31779

Apache Traffic ServerImproper input validation on HTTP/2 headers

high
7.5
First published (updated )
CVE-2022-25763

Apache Traffic ServerTransfer-Encoding not treated as hop-by-hop

high
7.5
First published (updated )
CVE-2022-31778

Apache Traffic ServerProtocol vs scheme mismatch

high
7.5
First published (updated )
CVE-2021-37150

Apache Traffic ServerInsufficient Validation of HTTP/1.x Headers

high
7.5
First published (updated )
CVE-2022-28129

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache Traffic ServerHTTP/2 framing vulnerabilities

high
7.5
First published (updated )
CVE-2022-31780

Debian LinuxImproper authentication vulnerability in TLS origin verification

high
8.1
First published (updated )
CVE-2021-44759

Apache Traffic ServerHTTP request line fuzzing attacks

high
7.5
First published (updated )
CVE-2021-44040

Apache Traffic Serverheap-buffer-overflow with stats-over-http plugin

critical
9.8
First published (updated )
CVE-2021-43082

Apache Traffic ServerATS stops accepting connections on FreeBSD

high
7.5
First published (updated )
CVE-2021-41585

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203