CNNVD-202510-2379 Information

CNNVD ID

CNNVD-202510-2379

Related CVE

CVE-2025-61581

• CNNVD Published: 2025-10-16

Description (Chinese)

Apache Traffic Control是美国阿帕奇（Apache）基金会的一套分布式、可扩展的内容分发解决方案。该产品主要用于构建大规模内容分发网络。 Apache Traffic Control存在安全漏洞，该漏洞源于管理界面中可指定恶意模式，可能导致正则表达式拒绝服务。

Description (English)

Apache Traffic Control is a distributed, scalable package of content distribution solutions for the Apache Foundation in the United States. The product is used mainly to build large-scale content distribution networks. There is a security loophole in Apache Traffic Control, which stems from the fact that malicious patterns can be specified in the management interface and may lead to regular expressions of rejection of service.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2025-10-16

Last Modified

2026-02-24

References

https://lists.apache.org/thread/mx2jxgnlop2f4vbqnvmrldh4pqmobxvp

Patch

https://lists.apache.org/thread/mx2jxgnlop2f4vbqnvmrldh4pqmobxvp