CVE-2021-27737
HIGHApache Traffic Server 9.0.0 - Denial of Service in Slicer Plugin
Title source: llmDescription
Apache Traffic Server 9.0.0 is vulnerable to a remote DOS attack on the experimental Slicer plugin.
References (3)
Core 3
Core References
Mailing List, Vendor Advisory mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r74f72650c3590478f028ea3a1b8cab2a33d20ad9ff407e894ca70525%40%3Cannounce.trafficserver.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r74f72650c3590478f028ea3a1b8cab2a33d20ad9ff407e894ca70525%40%3Cdev.trafficserver.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r74f72650c3590478f028ea3a1b8cab2a33d20ad9ff407e894ca70525%40%3Cusers.trafficserver.apache.org%3E
Scores
CVSS v3
7.5
EPSS
0.0947
EPSS Percentile
92.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (1)
apache/traffic_server
9.0.0
Published
May 14, 2021
Tracked Since
Feb 18, 2026