CVE-2022-47185

CVE-2022-47185: Apache Traffic Server: Invalid Range header causes a crash

Vendor Apache Software Foundation

Product Apache Traffic Server

Weakness CWE-20 · Input validation

Published August 9, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Improper input validation vulnerability on the range header in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.

Key dates

Disclosure timeline

August 9, 2023 CVE published

February 13, 2025 Record updated