CVE-2024-35161

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions: Apache Traffic Server versions 8.0.0 through 8.1.10 Apache Traffic Server versions 9.0.0 through 9.2.4

Description: The issue arises from Apache Traffic Server forwarding malformed HTTP chunked trailer sections to origin servers, which can be utilized for request smuggling and may also lead to cache poisoning if the origin servers are vulnerable.

Recommendations: To resolve the issue for versions 8.0.0 through 8.1.10, upgrade to version 8.1.11. To resolve the issue for versions 9.0.0 through 9.2.4, upgrade to version 9.2.5. As a temporary workaround, consider setting the new configuration proxy.config.http.drop chunked trailers to prevent forwarding the chunked trailer section.

Fix

RCE

HTTP Request/Response Smuggling

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-444

Related Identifiers

BDU:2024-05796

CVE-2024-35161

DLA-3897-1

DSA-5758-1

OESA-2024-1955

Affected Products

Apache Traffic Server

CVE-2024-35161

Weakness Enumeration

Related Identifiers

Affected Products

References · 22