CVE-2014-3525 — Apache Traffic Server vulnerability

8 documents6 sources

Severity

10.0CRITICALNVD

EPSS

1.3%

top 20.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Traffic Server

Timeline

PublishedAug 22

Latest updateMay 17

Description

Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDapache/traffic_server34 versions+33

🔴Vulnerability Details

GHSA

GHSA-8h6h-w398-77v5: Unspecified vulnerability in Apache Traffic Server 3↗2022-05-17

▶

OSV

CVE-2014-3525: Unspecified vulnerability in Apache Traffic Server 3↗2014-08-22

▶

CVEList

CVE-2014-3525: Unspecified vulnerability in Apache Traffic Server 3↗2014-08-22

▶

📋Vendor Advisories

Debian

CVE-2014-3525: trafficserver - Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before...↗2014

▶

💬Community

Bugzilla

CVE-2014-3525 trafficserver: unspecified flaw related to health checks fixed in versions 4.2.1.1 and 5.0.1 [epel-6]↗2014-08-25

▶

Bugzilla

CVE-2014-3525 trafficserver: unspecified flaw related to health checks fixed in versions 4.2.1.1 and 5.0.1 [fedora-19]↗2014-08-25

▶

Bugzilla

CVE-2014-3525 trafficserver: unspecified flaw related to health checks fixed in versions 4.2.1.1 and 5.0.1↗2014-08-25

▶