CVE-2023-33933

CVE-2023-33933: Apache Traffic Server: s3_auth plugin problem with hash calculation

Vendor Apache Software Foundation

Product Apache Traffic Server

Weakness CWE-200 · Info exposure

Published June 14, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions

Key dates

Disclosure timeline

June 14, 2023 CVE published

February 13, 2025 Record updated