High severity7.5NVD Advisory· Published Apr 2, 2026· Updated Apr 6, 2026
CVE-2025-65114
CVE-2025-65114
Description
Apache Traffic Server allows request smuggling if chunked messages are malformed.
This issue affects Apache Traffic Server: from 9.0.0 through 9.2.12, from 10.0.0 through 10.1.1.
Users are recommended to upgrade to version 9.2.13 or 10.1.2, which fix the issue.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- lists.apache.org/thread/2s11roxlv1j8ph6q52rqo1klvl01n14qnvdMailing ListVendor Advisory
News mentions
0No linked articles in our index yet.