Apache Traffic Server Vulnerability - CVE-2024-35296 - Vulnerability Database

Apache Traffic Server Vulnerability - CVE-2024-35296

High

Reference: CVE-2024-35296

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-35296

Title: Apache Traffic Server Vulnerability

Overview:

Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force forwarding requests. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10 from 9.0.0 through 9.2.4. Users are recommended to upgrade to version 8.1.11 or 9.2.5 which fixes the issue.