CVE-2014-3624: Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to by ...

Severity: Critical

CVSS Score: 9.8

Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.