HTTP/2 Frame Smuggling Vulnerability in Apache Traffic Server

HTTP/2 Frame Smuggling Vulnerability in Apache Traffic Server

CVE-2022-31780 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

Learn more about our Cis Benchmark Audit For Apache Http Server.