CVE-2024-50306

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Nov 14, 2024

Updated: Nov 15, 2024

CWE ID 252

Summary

CVE-2024-50306 refers to a vulnerability in Apache Traffic Server where an unchecked return value allows the software to retain privileges upon startup. This issue poses a security risk and affects Apache Traffic Server versions 9.2.0 through 9.2.5 and 10.0.0 through 10.0.1. To mitigate this vulnerability, users are advised to upgrade to the patched versions 9.2.6 or 10.0.2.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apache Traffic Server

Affected Vendors

Apache Software Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zuXVsw
https://www.cve.org/CVERecord?id=CVE-2024-50306
https://nvd.nist.gov/vuln/detail/CVE-2024-50306

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners