← voltar
CVE-2021-38161

Not validating origin TLS certificate

EPSS 1.9%CWE-287
Improper Authentication vulnerability in TLS origin verification of Apache Traffic Server allows for man in the middle attacks. This issue affects Apache Traffic Server 8.0.0 to 8.0.8.
Produtos afetados
Apache Software Foundation · Apache Traffic Server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://lists.apache.org/thread/k01797hyncx53659wr3o72s5cvkc3164https://www.debian.org/security/2022/dsa-5153