CVE-2021-44759

CVE-2021-44759: Improper authentication vulnerability in TLS origin verification

Vendor Apache Software Foundation
Product Apache Traffic Server
Weakness CWE-287 · Improper authentication
Published March 23, 2022
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

Improper Authentication vulnerability in TLS origin validation of Apache Traffic Server allows an attacker to create a man in the middle attack. This issue affects Apache Traffic Server 8.0.0 to 8.1.0.

Key dates

02Disclosure timeline

March 23, 2022 CVE published
August 4, 2024 Record updated