CVE-2024-56195: 
Apache Traffic Server vulnerability analysis and mitigation

An Improper Access Control vulnerability was identified in Apache Traffic Server (CVE-2024-56195). The vulnerability affects Apache Traffic Server versions from 9.2.0 through 9.2.8 and from 10.0.0 through 10.0.3. The issue was discovered by Masaori Koshiba and specifically relates to intercept plugins not being properly access controlled (NVD, OSS Security).

The vulnerability has been classified as CWE-284 (Improper Access Control). According to the CISA-ADP assessment, it has received a CVSS 3.1 Base Score of 6.3 (MEDIUM) with the following vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L. This indicates that the vulnerability requires network access, low attack complexity, low privileges, and no user interaction, with potential impacts on confidentiality, integrity, and availability (NVD).

The vulnerability affects the security of intercept plugins in Apache Traffic Server, potentially allowing unauthorized access control bypasses. The impact is considered moderate, with potential compromises to system confidentiality, integrity, and availability, as indicated by the CVSS scoring (NVD).

Users are strongly recommended to upgrade to version 9.2.9 or 10.0.4, which contain fixes for this vulnerability. For 9.x users, the upgrade path is to version 9.2.9 or later, while 10.x users should upgrade to version 10.0.4 or later (OSS Security, NVD).