CVE-2018-11783 — Sensitive Information Exposure in Apache Traffic Server
Severity
7.5HIGHNVD
EPSS
1.1%
top 21.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 7
Latest updateMay 14
Description
sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin. The plugin doesn't strip the headers from the request in some scenarios. This problem was discovered in versions 6.0.0 to 6.0.3, 7.0.0 to 7.1.5, and 8.0.0 to 8.0.1.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6
Affected Packages2 packages
▶CVEListV5apache_software_foundation/apache_traffic_serverApache Traffic Server 6.0.0 to 6.0.3, 7.0.0 to 7.1.5, 8.0.0 to 8.0.1
🔴Vulnerability Details
3GHSA▶
GHSA-xr2q-4fvx-23gr: sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin↗2022-05-14
OSV▶
CVE-2018-11783: sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin↗2019-03-07
CVEList▶
CVE-2018-11783: sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin↗2019-03-07
💥Exploits & PoCs
1Exploit-DB▶
Microsoft Windows - StorSvc SvcMoveFileInheritSecurity Arbitrary File Creation Privilege Escalation↗2018-02-20
📋Vendor Advisories
1Debian▶
CVE-2018-11783: trafficserver - sslheaders plugin extracts information from the client certificate and sets head...↗2018