Proxy Server

Apache Traffic Server

Apache Traffic Server software is a fast scalable and extensible HTTP/1.1 and HTTP/2.0 compliant caching proxy server. Formerly a commercial product Yahoo donated it to the Apache Foundation and currently used by several major CDNs and content owners.

Official Site:

https://trafficserver.apache.org/

Severity Summary:

Critical: 11 High: 48 Medium: 10

Reference

Title

Severity

CVE-2022-37392

Apache Traffic Server Improper Check for Unusual or Exceptional Conditions Vulnerability

Medium

CVE-2018-8004

Apache Traffic Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability

Medium

CVE-2022-40743

Apache Traffic Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Medium

CVE-2014-10022

Apache Traffic Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

Medium

CVE-2019-9516

Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability

Medium

CVE-2012-0256

Apache Traffic Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

Medium

CVE-2010-2952

Apache Traffic Server Improper Input Validation Vulnerability

Medium

CVE-2018-9481

Apache Traffic Server Integer Overflow or Wraparound Vulnerability

Medium

CVE-2018-8005

Apache Traffic Server Uncontrolled Resource Consumption Vulnerability

Medium