1990 matches found
CVE-2022-31125
Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi allows a remote, unauthenticated attacker to bypass authentication and access admin functionality by sending a specially crafted HTTP request. This affects Roxywi version...
Design/Logic Flaw
Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi allows a remote, unauthenticated attacker to code execution by sending a specially crafted HTTP request to /app/options.py file. This affects Roxy-wi versions before...
CVE-2022-31126
CVE-2022-31126 affects Roxy-wi prior to 6.1.1.0. The Nuclei template confirms remote code execution via the vulnerable path, with commands executed through the application logic (ssh_command) in /app/funct.py, enabling an unauthenticated attacker to run arbitrary code on the target. Exploitation ...
SUSE-SU-2022:2277-1 Security update for haproxy
This update for haproxy fixes the following issues: - CVE-2022-0711: haproxy: Denial of service via set-cookie2 header bsc1196408...
Fedora: Security Advisory for golang-github-haproxytech-dataplaneapi (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-haproxytech-client-native (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: golang-github-haproxytech-dataplaneapi-2.4.4-4.fc36
HAProxy Data Plane API...
[SECURITY] Fedora 36 Update: golang-github-haproxytech-client-native-2.5.3-3.fc36
Go client for HAProxy configuration and runtime API...
Security Bulletin: Vulnerabilities in HAProxy Watson Knowledge Catalog for IBM Cloud Pak for Data
Summary Multiple vulnerabilities in HAProxy distributed as part of Watson Knowledge Catalog for IBM Cloud Pak for Data. The issues are now addressed. Vulnerability Details CVEID: CVE-2021-39241 DESCRIPTION: HAProxy could allow a remote attacker to bypass security restrictions, caused by improper...
Red Hat OpenShift 4.9 < 4.9.11 haproxy Vulnerability
Red Hat OpenShift is prone to a vulnerability in the haproxy package. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2022-1842)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2022-1866)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2022-1866)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way HAProxy processed HTTP responses containing the 'Set-Cookie2' header. This flaw could allow an attacker to send...
EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2022-1842)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way HAProxy processed HTTP responses containing the 'Set-Cookie2' header. This flaw could allow an attacker to send...
Security Bulletin: Vulnerability in HAProxy affecting Watson Knowledge Catalog for IBM Cloud Pak for Data
Summary HAProxy is vulnerable to a denial of service that is impacting Watson Knowledge Catalog for IBM Cloud Pak for Data. This vulnerability has been addressed. Vulnerability Details CVEID: CVE-2022-0711 DESCRIPTION: HAProxy is vulnerable to a denial of service, caused by a flaw when processing...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2022-1789)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2022-1806)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : haproxy (EulerOS-SA-2022-1789)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way HAProxy processed HTTP responses containing the 'Set-Cookie2' header. This flaw could allow an attacker to send...
EulerOS 2.0 SP10 : haproxy (EulerOS-SA-2022-1806)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way HAProxy processed HTTP responses containing the 'Set-Cookie2' header. This flaw could allow an attacker to send...
Debian: Security Advisory (DLA-3034-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...