{"schema_version": "1.6.1", "id": "CVE-2022-28129", "summary": " Insufficient Validation of HTTP/1.x Headers", "details": "Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers.  This issue affects Apache Traffic Server 8.0.0 to 9.1.2.", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "8.0.0 to 9.1.2"}, {"last_affected": "8.0.0 to 9.1.2"}]}]}], "references": [{"type": "ADVISORY", "url": "https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21"}]}