Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Proxy Server

Apache Traffic Server

Apache Traffic Server software is a fast scalable and extensible HTTP/1.1 and HTTP/2.0 compliant caching proxy server. Formerly a commercial product Yahoo donated it to the Apache Foundation and currently used by several major CDNs and content owners.

Official Site:

https://trafficserver.apache.org/

Severity Summary:

Critical: 12 High: 56 Medium: 14
Reference
Title
Severity
CVE-2021-27577
Apache Traffic Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
High
CVE-2021-32565
Apache Traffic Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
High
CVE-2021-32566
Apache Traffic Server Improper Input Validation Vulnerability
High
CVE-2021-32567
Apache Traffic Server Improper Input Validation Vulnerability
High
CVE-2021-27737
Apache Traffic Server Remote DOS Attack
High
CVE-2025-58136
Apache Traffic Server Always-Incorrect Control Flow Implementation Vulnerability
High
CVE-2020-17509
Apache Traffic Server HTTP Request Smuggling Vulnerability
High
CVE-2019-9511
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2018-8040
Apache Traffic Server Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2018-9481
Apache Traffic Server Integer Overflow or Wraparound Vulnerability
Medium
CVE-2014-10022
Apache Traffic Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2012-0256
Apache Traffic Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2024-56202
Apache Traffic Server Vulnerability
Medium
CVE-2024-56196
Apache Traffic Server Vulnerability
Medium
CVE-2024-56195
Apache Traffic Server Vulnerability
Medium
CVE-2018-8005
Apache Traffic Server Uncontrolled Resource Consumption Vulnerability
Medium
CVE-2018-8004
Apache Traffic Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2019-9516
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability
Medium
CVE-2022-40743
Apache Traffic Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-38311
Apache Traffic Server Vulnerability
Medium
CVE-2022-37392
Apache Traffic Server Improper Check for Unusual or Exceptional Conditions Vulnerability
Medium
CVE-2010-2952
Apache Traffic Server Improper Input Validation Vulnerability
Medium