Apache Traffic Server URL Fragment Cache Poisoning Vulnerability

Apache Traffic Server URL Fragment Cache Poisoning Vulnerability

CVE-2021-27577 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Incorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.

Learn more about our Cis Benchmark Audit For Apache Http Server.