CVE-2022-32749

Published: Dec 19, 2022Modified: Apr 17, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache Traffic Server allows an attacker to crash the server under certain conditions. This issue affects Apache Traffic Server: from 8.0.0 through 9.1.3.

Affected (2)

Products: Apache: Traffic Server

Apache

1 product

Traffic Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apache Traffic Server	From 8.0.0 to 8.1.6
Apache Traffic Server	From 9.0.0 to 9.1.4

Related CWEs

CWE-754

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (2)

https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02

Source: security@apache.org

Mailing ListVendor Advisory

https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListVendor Advisory

Timeline

No history available yet.