CVE-2022-47184
Apache Traffic Server: The TRACE method can be use to disclose network information
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
Apache Software Foundation · Apache Traffic ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://lists.apache.org/thread/tns2b4khyyncgs5v5p9y35pobg9z2bvshttps://lists.debian.org/debian-lts-announce/2023/06/msg00037.htmlhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV/https://www.debian.org/security/2023/dsa-5435