Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.8 views

RHCOS 4 : OpenShift Container Platform 4.7.41 (RHSA-2022:0114)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0114 advisory. - haproxy: an HTTP method name may contain a space followed by the name of a protected resource CVE-2021-39241 - haproxy: request...

7.5CVSS5.8AI score0.56083EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

RHCOS 4 : OpenShift Container Platform 4.6.53 (RHSA-2022:0024)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0024 advisory. - haproxy: an HTTP method name may contain a space followed by the name of a protected resource CVE-2021-39241 - haproxy: request...

7.5CVSS5.8AI score0.56083EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.29 views

Amazon Linux 2 : haproxy2 (ALASHAPROXY2-2023-005)

The version of haproxy2 installed on the remote host is prior to 2.2.17-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2HAPROXY2-2023-005 advisory. A flaw was found in haproxy. An input validation flaw when processing HTTP/2 requests causes haproxy to not ensur...

7.5CVSS7.2AI score0.56083EPSS
Exploits5References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.3 views

SUSE CVE-2021-39241

An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contain a space followed by the name of a protected resource. It is possible that a server would interpret this as a request for that protected resource, such ...

7.5CVSS7AI score0.0177EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/07 2:1 p.m.55 views

CVE-2021-39241

haproxy has an input validation flaw that could allow a remote attacker to bypass implemented security restrictions. An HTTP method name may contain a space followed by the name of a protected resource. Given this, It is possible that an server would interpret this as a request for that protected...

7.5CVSS1.6AI score0.0177EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/01/12 8:49 a.m.40 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.53 security update

Red Hat OpenShift Container Platform release 4.6.53 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a...

7.5CVSS6.9AI score0.56083EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2022/01/05 3:47 p.m.33 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.8.25 security update

Red Hat OpenShift Container Platform release 4.8.25 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.8. Red Hat Product Security has rated this update as having a...

7.5CVSS6.9AI score0.56083EPSS
Exploits5References6
OpenVAS
OpenVAS
added 2021/11/12 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2021-2712)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02341EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/11/12 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2021-2687)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02341EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.31 views

EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2021-2712)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contai...

7.5CVSS6.5AI score0.02341EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.30 views

EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2021-2687)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contai...

7.5CVSS6.5AI score0.02341EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/11/10 8:49 p.m.37 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.9.6 packages and security update

Red Hat OpenShift Container Platform release 4.9.6 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.9. Red Hat Product Security has rated this update as having a...

7.5CVSS7AI score0.56083EPSS
Exploits5References5
OpenVAS
OpenVAS
added 2021/08/27 12:0 a.m.25 views

Fedora: Security Advisory for haproxy (FEDORA-2021-e6557245e8)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02341EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/08/27 12:0 a.m.25 views

Fedora: Security Advisory for haproxy (FEDORA-2021-3ab4512c98)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02341EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/08/18 12:0 a.m.43 views

Debian DSA-4960-1 : haproxy - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4960 advisory. - An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not ensure that the scheme and path portions of a URI hav...

7.5CVSS6.6AI score0.02341EPSS
Exploits0References9
OSV
OSV
added 2021/08/17 7:15 p.m.3 views

DEBIAN-CVE-2021-39241

An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contain a space followed by the name of a protected resource. It is possible that a server would interpret this as a request for that protected resource, such ...

5.3CVSS5.5AI score0.0177EPSS
Exploits0References1
CVE
CVE
added 2021/08/17 6:33 p.m.210 views

CVE-2021-39241

HAProxy contains a vulnerability CVE-2021-39241 where an HTTP method name may contain a space before a protected resource, potentially causing a request to be interpreted as accessing that resource. Affected series include HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 b...

5.3CVSS6AI score0.0177EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder