漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache Traffic Server: Client IP address from PROXY protocol is not used for ACL
Vulnerability Description
ACL configured in ip_allow.config or remap.config does not use IP addresses that are provided by PROXY protocol. Users can use a new setting (proxy.config.acl.subjects) to choose which IP addresses to use for the ACL if Apache Traffic Server is configured to accept PROXY protocol. This issue affects undefined: from 10.0.0 through 10.0.6, from 9.0.0 through 9.2.10. Users are recommended to upgrade to version 9.2.11 or 10.0.6, which fixes the issue.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Apache Traffic Server(ATS) 访问控制错误漏洞
Vulnerability Description
Apache Traffic Server(ATS)是美国阿帕奇(Apache)基金会的一套可扩展的HTTP代理和缓存服务器。 Apache Traffic Server(ATS) 10.0.0至10.0.6版本和9.0.0至9.2.10版本存在访问控制错误漏洞,该漏洞源于ACL配置未使用PROXY协议提供的IP地址。
CVSS Information
N/A
Vulnerability Type
N/A