CVE-2023-33933


Apache Traffic Server: s3_auth plugin problem with hash calculation

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions


We have discovered 598 live websites that are affected by CVE-2023-33933.

Contact us to get more info



Affected Software

Product  ATS
Category Web Servers
Vulnerable Versions
  • from 8 through 9.2
Total Vulnerable Versions41
Vulnerable Domains598 live websites (35.57% of ATS install base)


Common Weakness Enumeration


CWE-200 Exposure of Sensitive Information to an Unauthorized Actor



Details

  • Published - Jun 14, 2023
  • Updated - Jun 14, 2023

Credits

  • Masakazu Kitajo (reporter)





Countries

United States289 websites


Germany200 websites
Italy31 websites
GB18 websites
France15 websites
Finland11 websites
Russia10 websites
Netherlands7 websites
Japan4 websites
Belgium3 websites

TLDs

.org278 websites
.info91 websites
.com53 websites
.it21 websites
.de19 websites
.ru10 websites
.fi9 websites
.net4 websites
.nl3 websites
.edu2 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


References


Websites affected by CVE-2023-33933

Top websites that are affected by CVE-2023-33933. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
**.*********.org United States**
*******.*********.org United States***
***.*********.org United States*,***
**.*********.org United States*,***
**.*********.org United States*,***
**.*.*********.org United States*,***
****.*********.org United States*,***
**.*********.org United States*,***
**.*********.org United States*,***
**.*********.org United States*,***
See full domain list