PT-2026-29793 · Apache · Apache Traffic Server
Katsutoshi Ikenoya
·
Published
2026-04-02
·
Updated
2026-04-02
·
CVE-2025-65114
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Apache Traffic Server allows request smuggling if chunked messages are malformed.
This issue affects Apache Traffic Server: from 9.0.0 through 9.2.12, from 10.0.0 through 10.1.1.
Users are recommended to upgrade to version 9.2.13 or 10.1.2, which fix the issue.
HTTP Request/Response Smuggling
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Traffic Server