← back
CVE-2014-3624

CVE-2014-3624

EPSS 3.8%
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://mail-archives.apache.org/mod_mbox/www-announce/201411.mbox/%3C20141101231749.2E3561043F%40minotaur.apache.org%3Ehttps://issues.apache.org/jira/browse/TS-2677http://www.securityfocus.com/bid/101630