Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2021-44040

Improper Input Validation vulnerability in request line parsing of Apache Traffic Server allows an attacker to send invalid requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.3 and 9.0.0 to 9.1.1.

  • Published: Mar 23, 2022
  • Updated: Nov 16, 2025
  • CVE: CVE-2021-44040
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
apache / traffic_server 9.0.0 9.1.1.x
apache / traffic_server 8.0.0 8.1.3.x
debian / debian_linux 10.0 10.0.x
debian / debian_linux 11.0 11.0.x