CVE-2022-23206

HIGH7.5EPSS 0.84%

Server-Side Request Forgery in Apache Traffic Control in github.com/apache/trafficcontrol

Published: 2/7/2022Modified: 3/3/2026

Description

Server-Side Request Forgery in Apache Traffic Control in github.com/apache/trafficcontrol

Go/github.com/apache/trafficcontrol>= 6.0.0, < 6.1.0
Go/github.com/apache/trafficcontrolfrom 0, < 5.1.6+incompatible, >= 6.0.0+incompatible, < 6.1.0+incompatible

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N