Known vulnerabilities in Apache Foundation Apache Traffic Control

Known vulnerabilities in Apache Foundation Apache Traffic Control

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 8

Security bulletins (8)

Secuity bulletin	Severity	Status	Published
SB2025112815: Remote denial of service in Apache Traffic Control	Medium	Not patched	28.11.2025
SB2024122314: Authenticated SQL injection in Apache Traffic Control	Low	Patched	23.12.2024
SB2022020707: Server-Side Request Forgery (SSRF) in Apache Traffic Control	Medium	Patched	07.02.2022
SB2021121624: Remote code execution in Apache Traffic Control (Apache Log4j component)	Critical	Patched Exploited	16.12.2021
SB2021111211: LDAP injection in Apache Traffic Control	High	Patched	12.11.2021
SB2021101203: Improper input validation in Apache Traffic Control	Low	Patched	12.10.2021
SB2019090805: Authentication bypass in Apache Traffic Control	Medium	Patched	08.09.2019
SB2017071003: Denial of service in Apache Traffic Control	Medium	Patched	10.07.2017