Vulnerabilities > Apache > Traffic Server > 5.2.0

DATE CVE VULNERABILITY TITLE RISK
2019-10-22 CVE-2019-10079 Allocation of Resources Without Limits or Throttling vulnerability in Apache Traffic Server
Apache Traffic Server is vulnerable to HTTP/2 setting flood attacks.
network
low complexity
apache CWE-770
7.5
7.5
2018-02-27 CVE-2017-7671 Improper Input Validation vulnerability in multiple products
There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake.
network
low complexity
apache debian CWE-20
7.5
7.5
2018-02-27 CVE-2017-5660 Improper Input Validation vulnerability in multiple products
There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and prior and 7.0.0 and prior with the Host header and line folding.
network
low complexity
apache debian CWE-20
8.6
8.6
2017-04-17 CVE-2017-5659 Improper Input Validation vulnerability in Apache Traffic Server
Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding.
network
low complexity
apache CWE-20
7.5
7.5