Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache traffic server 2.1.5 vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2017-6062
The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka mod_auth_openidc) module prior to 2.1.5 for the Apache HTTP Server does not skip OIDC_CLAIM_ and OIDCAuthNHeader headers in an "OIDCUnAuthAction pass" configuration, which allows remote mali...
Openidc Mod Auth Openidc
NA
CVE-2014-3525
Unspecified vulnerability in Apache Traffic Server 3.x up to and including 3.2.5, 4.x prior to 4.2.1.1, and 5.x prior to 5.0.1 has unknown impact and attack vectors, possibly related to health checks.
Apache Traffic Server 3.1.4
Apache Traffic Server 2.1.1
Apache Traffic Server 3.3.3
Apache Traffic Server 2.1.8
Apache Traffic Server 2.1.0
Apache Traffic Server 2.0.1
Apache Traffic Server 2.1.7
Apache Traffic Server 4.0.1
Apache Traffic Server 3.3.0
Apache Traffic Server 3.1.1
Apache Traffic Server 3.1.3
Apache Traffic Server 2.1.5
Apache Traffic Server 4.2.0
Apache Traffic Server 3.0.3
Apache Traffic Server 2.1.3
Apache Traffic Server 3.0.0
Apache Traffic Server 2.1.4
Apache Traffic Server 4.1.0
Apache Traffic Server 2.1.6
Apache Traffic Server 4.2.1
Apache Traffic Server 3.3.1
Apache Traffic Server 5.0.0
NA
CVE-2012-0256
Apache Traffic Server 2.0.x and 3.0.x prior to 3.0.4 and 3.1.x prior to 3.1.3 does not properly allocate heap memory, which allows remote malicious users to cause a denial of service (daemon crash) via a long HTTP Host header.
Apache Traffic Server 3.1.1
Apache Traffic Server 3.1.0
Apache Traffic Server 2.1.7
Apache Traffic Server 2.1.6
Apache Traffic Server 2.0.1
Apache Traffic Server 2.0.0
Apache Traffic Server 3.0.3
Apache Traffic Server 3.0.2
Apache Traffic Server 2.1.5
Apache Traffic Server 2.1.4
Apache Traffic Server 3.0.1
Apache Traffic Server 3.0.0
Apache Traffic Server 2.1.3
Apache Traffic Server 2.1.2
Apache Traffic Server 3.1.2
Apache Traffic Server 2.1.9
Apache Traffic Server 2.1.8
Apache Traffic Server 2.1.1
Apache Traffic Server 2.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started