CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

Update: 2025-01-23

Description

A critical SQL injection vulnerability (CVE-2024-45387) has been discovered in Apache Traffic Control's Traffic Ops component, impacting versions 8.0.0 and 8.0.1. Attackers with high-level roles (admin, federation, operations, portal, steering) can execute malicious SQL queries, risking data compromise, privilege escalation, and service disruption.

Link to the Research Report: https://www.cyfirma.com/research/cve-2024-45387-critical-vulnerability-in-apache-traffic-control/

#CVE202445387 #SQLInjection #ApacheTrafficControl #CyberSecurity #Vulnerability #PatchNow #CYFIRMA #CyfirmaResearch #ExternalThreatLandscapeManagement #ETLM

https://www.cyfirma.com/

Comments

In Channel

CYFIRMA Research- NexusRoute: Attempting to Disrupt an Indian Government Ministry

2025-12-2406:51

CYFIRMA Research- SeedSnatcher: Dissecting an Android Malware Targeting Multiple Crypto Wallet Mnemonic Phrases

2025-12-1804:16

CYFIRMA Research- RTO Challan Fraud A Technical Report on APK-Based Financial and Identity Theft

2025-12-1607:17

CYFIRMA Research- Tracking Ransomware – November 2025

2025-12-1205:17

CYFIRMA Research- APT36 Python Based ELF Malware Targeting Indian Government Entities

2025-12-1104:46

CYFIRMA Research: North Korean Cyber Crime as a Statecraft Tool

2025-12-0907:08

CYFIRMA Research: Rising Cybercrime During Black Friday & Cyber Monday- A 2025 Threat Intelligence Report

2025-12-0108:05

CYFIRMA Research: Tycoon 2FA- A Technical Analysis of its Adversary-in-the-Middle Phishing Operation

2025-11-2703:21

CYFIRMA Research- Pig Butchering Scams: Cybercrime Threat Intelligence

2025-11-2107:51

CYFIRMA Research- Regional Stability on Shaky Ground: Cyber Threat Escalation in the Middle East

2025-11-1407:15

CYFIRMA Research- Telemetry Relay: When Diagnostics Turn Against You

2025-11-1106:07

CYFIRMA Research- Tracking Ransomware: October 2025

2025-11-1003:19

CYFIRMA Research: Android/BankBot- YNRK Mobile Banking Trojan

2025-11-0403:50

CYFIRMA Research- GhostGrab Android Malware

2025-11-0305:17

Cyfirma Research- CVE-2025-6541: TP-Link Omada Gateway Remote Command Injection Vulnerability Analysis

2025-10-3104:51

CYFIRMA Research: DPRK Sanctions Violations in Cyber Operations Post-UN Panel Demise

2025-10-1305:49

CYFIRMA Research- Tracking Ransomware: September 2025

2025-10-0704:11

CYFIRMA Research: Yurei Ransomware- The Digital Ghost

2025-10-0606:14

CYFIRMA Research- DeerStealer Malware Campaign: Stealth, Persistence, and Rootkit-Like Capabilities

2025-09-2203:30

CYFIRMA Research- Defence Industry Threat Report

2025-09-1906:04

00:00

CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

#box-pro-ellipsis-176667492443758{-webkit-line-clamp:2;}CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

CYFIRMA

CYFIRMA Research- CVE-2024-45387: Critical Vulnerability in Apache Traffic Control