Security Advisory

CVE-2018-11783

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-07 18:00:00

Last updated 2024-09-16 22:15:51

Assigner apache

State PUBLISHED

Description

sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin. The plugin doesnt strip the headers from the request in some scenarios. This problem was discovered in versions 6.0.0 to 6.0.3, 7.0.0 to 7.1.5, and 8.0.0 to 8.0.1.

← Browse all CVEs View on cve.org ↗