CVE-2020-17509
HIGH7.5EPSS 3.0%Published: 1/11/2021Modified: 4/28/2026
Also known as:DEBIAN-CVE-2020-17509
Description
ATS negative cache option is vulnerable to a cache poisoning attack. If you have this option enabled, please upgrade or disable this feature. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.
Affected packages (1)
- Debian/trafficserverfrom 0, < 8.1.1+ds-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |