Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161)

Description

Improper Authentication vulnerability in TLS origin verification of Apache Traffic Server allows for man in the middle attacks. This issue affects Apache Traffic Server 8.0.0 to 8.0.8.

Remediation

References

CVE-2021-38161

Related Vulnerabilities

WordPress Plugin Stockdio Historical Chart Cross-Site Scripting (2.7.2)

Jboss EAP Files or Directories Accessible to External Parties Vulnerability (CVE-2021-3717)

WordPress Plugin WP Review Unspecified Vulnerability (5.2.1)

WordPress Plugin Injectscr Spam Injection (All)

WordPress Plugin DB Toolkit 'uploadify.php' Arbitrary File Upload (0.1.10)

Severity

High

Classification

CVE-2021-38161 CWE-287 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities