Apache Traffic Server Vulnerability - CVE-2023-30631 - Vulnerability Database

Apache Traffic Server Vulnerability - CVE-2023-30631

High
Reference: CVE-2023-30631
Title: Apache Traffic Server Vulnerability
Overview:

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration optionproxy.config.http.push_method_enabled didn39t function. However by default the PUSH method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions