CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

Show Notes

A critical SQL injection vulnerability (CVE-2024-45387) has been discovered in Apache Traffic Control's Traffic Ops component, impacting versions 8.0.0 and 8.0.1. Attackers with high-level roles (admin, federation, operations, portal, steering) can execute malicious SQL queries, risking data compromise, privilege escalation, and service disruption.

Link to the Research Report: https://www.cyfirma.com/research/cve-2024-45387-critical-vulnerability-in-apache-traffic-control/ 

#CVE202445387 #SQLInjection #ApacheTrafficControl #CyberSecurity #Vulnerability #PatchNow #CYFIRMA #CyfirmaResearch #ExternalThreatLandscapeManagement #ETLM

https://www.cyfirma.com/