Where
-Infinity
0

Trending

Last week
Last month
Last year

Apache Traffic ServerApache Traffic Server: Malformed chunked message body allows request smuggling

Risk 45
Severity
7.5
First published (updated )
CVE-2025-65114

Apache Traffic ServerApache Traffic Server: A simple legitimate POST request causes a crash

Risk 45
Severity
7.5
First published (updated )
CVE-2025-58136

Red Hat UndertowUndertow allows `\r\r\r` as a header block terminator. This can be used for request smuggling with p…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2443260

Apache Traffic ServerApache Traffic Server vulnerability

Risk 35
First published (updated )
Advisory
USN-7469-1

Apache Traffic ServerApache Traffic Server: Malformed chunked message body allows request smuggling

Risk 45
Severity
7.5
First published (updated )
CVE-2024-53868
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

[ANNOUNCE] ATS is vulnerable to quest smuggling via chunked messages

First published (updated )
https://seclists.org/oss-sec/2025/q2/7

Apache Traffic ServerApache Traffic Server: Request smuggling via pipelining after a chunked message body

Risk 48
Severity
6.3
First published (updated )
CVE-2024-38311

Apache Traffic ServerApache Traffic Server: Intercept plugins are not access controlled

Risk 48
Severity
6.3
First published (updated )
CVE-2024-56195

Apache Traffic ServerApache Traffic Server: ACL is not fully compatible with older versions

Risk 48
Severity
6.3
First published (updated )
CVE-2024-56196

Apache Traffic ServerApache Traffic Server: Expect header field can unreasonably retain resource

Risk 23
Severity
4.3
First published (updated )
CVE-2024-56202
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache Traffic ServerApache Traffic Server: Server process can fail to drop privilege

Risk 69
Severity
9.1
First published (updated )
CVE-2024-50306

Apache Traffic ServerApache Traffic Server: Valid Host field value can cause crashes

Risk 45
Severity
7.5
First published (updated )
CVE-2024-50305

Apache Traffic ServerApache Traffic Server: Cache key plugin is vulnerable to cache poisoning attack

Risk 45
Severity
7.5
First published (updated )
CVE-2024-38479

[ANNOUNCE] Apache Traffic Server is vulnerable to specific user inputs

First published (updated )
https://seclists.org/oss-sec/2024/q4/91

[ANNOUNCE] Apache Traffic Server is vulnerable to quest smuggling and DoS

First published (updated )
https://seclists.org/oss-sec/2024/q3/112
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

CVE-2024-31309: Apache Traffic Server: HTTP/2 CONTINUATION frames can be utilized for DoS attack

First published (updated )
https://seclists.org/oss-sec/2024/q2/71

Apache Traffic ServerApache Traffic Server: HTTP/2 CONTINUATION frames can be utilized for DoS attack

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2024-31309

fedoraproject fedoraApache Traffic Server: Malformed http/2 frames can cause an abort

Risk 43
Severity
7.5
First published (updated )
CVE-2023-39456

Apache Traffic ServerApache Traffic Server: s3_auth plugin problem with hash calculation

Risk 43
Severity
7.5
First published (updated )
CVE-2023-41752

CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations

First published (updated )
https://seclists.org/oss-sec/2023/q4/90
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations

First published (updated )
https://seclists.org/oss-sec/2023/q4/76

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Risk 65
Severity
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

Apache Traffic ServerApache Traffic Server: Differential fuzzing for HTTP request parsing discrepancies

Risk 66
Severity
9.1
First published (updated )
CVE-2023-33934

Apache Traffic ServerApache Traffic Server: Invalid Range header causes a crash

Risk 43
Severity
7.5
First published (updated )
CVE-2022-47185

Debian Debian LinuxApache Traffic Server: Configuration option to block the PUSH method in ATS didn't work

Risk 43
Severity
7.5
First published (updated )
CVE-2023-30631
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache Traffic ServerApache Traffic Server: s3_auth plugin problem with hash calculation

Risk 43
Severity
7.5
First published (updated )
CVE-2023-33933

debian/trafficserverApache Traffic Server: The TRACE method can be use to disclose network information

Risk 43
Severity
7.5
First published (updated )
CVE-2022-47184

Apache Traffic ServerApache Traffic Server: Security issues with the xdebug plugin

Risk 38
Severity
6.1
First published (updated )
CVE-2022-40743

Apache Traffic ServerApache Traffic Server: Improperly reading the client requests

Risk 27
Severity
5.3
First published (updated )
CVE-2022-37392

Apache Traffic ServerApache Traffic Server: Improperly handled requests can cause crashes in specific plugins

Risk 43
Severity
7.5
First published (updated )
CVE-2022-32749
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203