Lucene search
+L

8 matches found

nessus
nessus
added 2026/05/25 12:0 a.m.13 views

Debian dsa-6291 : haproxy - security update

The remote Debian 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6291 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6291-1 [email protected] https://www.debian.org/security/...

5.8CVSS5.8AI score0.00297EPSS
Exploits1References4
opensuse
opensuse
added 2026/04/24 12:0 a.m.4 views

Security update for haproxy (moderate)

openSUSE security update: security update for haproxy ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20618-1 Rating: moderate References: bsc1261626 bsc1262103 Cross-References: CVE-2026-33555 CVSS scores: CVE-2026-33555 SUSE : 4...

6.3CVSS5.4AI score0.00297EPSS
Exploits1References2
osv
osv
added 2026/04/23 12:11 p.m.4 views

SUSE-SU-2026:1568-1 Security update for haproxy

This update for haproxy fixes the following issue: - CVE-2026-33555: Request smuggling via HTTP/3 parser desynchronization bsc1262103...

5.8CVSS5.3AI score0.00297EPSS
Exploits1References3
opensuse
opensuse
added 2026/04/21 12:0 a.m.5 views

haproxy-3.3.6+git91.af5637e93-1.1 on GA media (moderate)

haproxy-3.3.6+git91.af5637e93-1.1 on GA media Announcement ID: openSUSE-SU-2026:10581-1 Rating: moderate Cross-References: CVE-2026-33555 CVSS scores: CVE-2026-33555 SUSE : 4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N CVE-2026-33555 SUSE : 6.3...

6.3CVSS5.8AI score0.00297EPSS
Exploits1
circl
circl
added 2026/04/16 8:0 p.m.16 views

CVE-2026-33555

creationtimestamp| type| source ---|---|--- 2026-04-16 20:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/80597 2026-04-16 20:13:19+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3mjn7v22bv52o 2026-04-17 09:00:04+00:00| published-proof-of-concept|...

5.8CVSS5.8AI score0.00297EPSS
Exploits1References12
mscve
mscve
added 2026/04/15 8:1 a.m.5 views

An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser does not check that the received body length matches a previously announced content-length when the stream is closed via a frame with an empty payload. This can cause desynchronization issues with the backend server and could be used for request smuggling. The earliest affected version is 2.6.

...

5.8CVSS5.8AI score0.00297EPSS
Exploits1
osv
osv
added 2026/04/13 5:16 p.m.2 views

DEBIAN-CVE-2026-33555

An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser does not check that the received body length matches a previously announced content-length when the stream is closed via a frame with an empty payload. This can cause desynchronization issues with the backend server and could be...

5.8CVSS5.4AI score0.00297EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2026/04/13 12:0 a.m.2 views

CVE-2026-33555

An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser does not check that the received body length matches a previously announced content-length when the stream is closed via a frame with an empty payload. This can cause desynchronization issues with the backend server and could be...

4CVSS5.8AI score0.00297EPSS
Exploits1References5
Rows per page
Query Builder