CVE-2023-33934
CVSS 3.1 Score 9.1 of 10 (high)
Details
Published Aug 9, 2023
Updated: Nov 6, 2023
CWE ID 444
Summary
CVE-2023-33934 denotes a vulnerability affecting Apache Traffic Server versions up to 9.2.1. An improper input validation issue puts systems at risk as it allows attackers to provide malicious data that could be misinterpreted by the server and lead to unintended functionality or even arbitrary code execution. This defect could potentially lead to serious consequences, including unauthorized access or data breaches. It is highly recommended that affected users upgrade to the latest version of Apache Traffic Server to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Apache Software Foundation Traffic Server
- Apache Traffic Server
Affected Vendors
- Apache Software Foundation