CVE-2017-5660

Summary

There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and prior and 7.0.0 and prior with the Host header and line folding. This can have issues when interacting with upstream proxies and the wrong host being used.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Traffic Server6.2.0 and prioraffected
Apache Software FoundationApache Traffic Server7.0.0 and prioraffected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References