Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 4 days ago9 views

CVE-2026-1784

CVE-2026-1784 affects the Route OpenShift resource (OpenShift route definitions using HAProxy) where checks on the spec.path YAML stanza are insufficient, allowing controlled injection of the HAProxy configuration. The CVE description and linked records indicate this can lead to remote code execu...

8.8CVSS5.8AI score0.00013EPSS
Exploits0References2
Cvelist
Cvelistadded 4 days ago34 views

CVE-2026-1784 Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection

The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration...

8.8CVSS0.00013EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 12:40 a.m.5 views

CVE-2024-37082

When deploying Cloud Foundry together with the haproxy-boshrelease and using a non default configuration, it might be possible to craft HTTP requests that bypass mTLS authentication to Cloud Foundry applications. You are affected if you have route-services enabled in routing-release and have...

9.1CVSS7.1AI score0.0004EPSS
Exploits0References1
Mageia
Mageiaadded 2023/12/08 10:55 a.m.44 views

Updated vim packages fix security vulnerabilities

The updated packages fix security vulnerabilities When closing a window, vim may try to access already freed window structure. Exploitation beyond crashing the application has not been shown to be viable. CVE-2023-48231 A floating point exception may occur when calculating the line offset for...

4.7CVSS7.6AI score0.00132EPSS
Exploits1References3
OSV
OSVadded 2022/09/01 9:15 p.m.2 views

CVE-2022-1677

In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration files. This malformed entry can match any arbitrary hostname, or all hostnames in the cluster, and direct...

6.3CVSS5.6AI score0.00227EPSS
Exploits0References2
Fedora
Fedoraadded 2022/07/04 1:35 a.m.20 views

[SECURITY] Fedora 36 Update: golang-github-haproxytech-client-native-2.5.3-3.fc36

Go client for HAProxy configuration and runtime API...

9.3CVSS8.2AI score0.00963EPSS
Exploits4
IBM Security Bulletins
IBM Security Bulletinsadded 2019/03/14 6:10 p.m.23 views

Security Bulletin: Cloudant Local Apache CouchDB CVE-2018-17188: Remote Privilege Escalations

Summary Prior to CouchDB version 2.3.0, CouchDB allowed for runtime-configuration of key components of the database. In some cases, this lead to vulnerabilities where CouchDB admin users could access the underlying operating system as the CouchDB user. Together with other vulnerabilities, it...

7.2CVSS0.7AI score0.01384EPSS
Exploits0Affected Software1
Veracode
Veracodeadded 2017/04/27 10:37 a.m.8 views

Poodle SSLv3 Vulnerability

github.com/jaytaylor/shipbuilder is vulnerable to the poodle SSLv3 vulnerability. It does not disable the use of SSL 3.0 by using proper setting in haproxy configuration...

6.6AI score
Exploits0
Rows per page
Query Builder