CVE-2024-45506

2024-09-0415:15:14

[email protected]

web.nvd.nist.gov

haproxy

remote

denial of service

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.009

Percentile

82.6%

JSON

HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service.

Affected configurations

Nvd

Node

haproxyhaproxyRange2.9.0–2.9.10

haproxyhaproxyRange3.0.0–3.0.4

haproxyhaproxyMatch3.1dev0

haproxyhaproxyMatch3.1dev1

haproxyhaproxyMatch3.1dev2

haproxyhaproxyMatch3.1dev3

haproxyhaproxyMatch3.1dev4

haproxyhaproxyMatch3.1dev5

VendorProductVersionCPE
haproxyhaproxy*cpe:2.3:a:haproxy:haproxy:*:*:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev0:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev1:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev2:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev3:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev4:*:*:*:*:*:*
haproxyhaproxy3.1cpe:2.3:a:haproxy:haproxy:3.1:dev5:*:*:*:*:*:*

Vendor	Product	Version	CPE
haproxy	haproxy	*	cpe:2.3:a:haproxy:haproxy::::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev0::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev1::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev2::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev3::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev4::::::
haproxy	haproxy	3.1	cpe:2.3:a:haproxy:haproxy:3.1:dev5::::::