Apache Traffic Server (ATS) Host Header and Line Folding Security Bypass Vulnerability CVE-2017-5660
- CVSSv3 Score
- Vulnerability description
Apache Traffic Server is prone to a security bypass vulnerability.
- Risk description
The flaw exists due to an error in Host header and line folding. This can have issues when interacting with upstream proxies and the wrong host being used. Successful exploitation will allow remote attackers to gain unauthorized access to certain resources. This may aid in further attacks.
Upgrade to 6.2.2, 7.1.2 or later.
- Not available