CVE-2017-5660
Description
There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and prior and 7.0.0 and prior with the Host header and line folding. This can have issues when interacting with upstream proxies and the wrong host being used.
Risk Information
Base Score
8.6
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
EPSS Score
Exploitation Probability
2.584
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| trafficserver security update(DSA-4128-1) trafficserver_7.0.0-6+deb9u1_i386.deb | Linux |
| trafficserver security update(DSA-4128-1) trafficserver_7.0.0-6+deb9u1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234