The Apache Software Foundation has issued urgent patches for multiple high-severity vulnerabilities in Apache Traffic Server (ATS), its enterprise-grade caching proxy server. Four distinct flaws (CVE-2024-38311, CVE-2024-56195, CVE-2024-56196, and CVE-2024-56202) enable threat actors to execute request smuggling attacks, bypass access controls, and disrupt resource management. Affected versions include ATS 9.0.0–9.2.8 and 10.0.0–10.0.3, with mitigations requiring
The post Apache Traffic Server Vulnerabilities Let Attackers Perform Malformed Requests appeared first on Cyber Security News. Read More
Posted inNews