CVE-2021-44040
HIGH7.5EPSS 2.6%Published: 3/23/2022Modified: 4/28/2026
Description
Improper Input Validation vulnerability in request line parsing of Apache Traffic Server allows an attacker to send invalid requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.3 and 9.0.0 to 9.1.1.
Affected packages (1)
- Debian/trafficserverfrom 0, < 8.1.1+ds-1.1+deb11u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |