Security Advisory

CVE-2023-30631

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-14 07:44:55

Last updated 2025-02-13 16:49:34

Assigner apache

State PUBLISHED

Description

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration option proxy.config.http.push_method_enabled didnt function. However, by default the PUSH method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions

← Browse all CVEs View on cve.org ↗