Malicious code in jigasi-haproxy-agent (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a84edbe7b5074454dc19154e38a0b4aaebad52cb446488862a52aa8e62db2b53 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

RHEL 8 : haproxy (RHSA-2024:9945)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:9945 advisory. The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications. Security Fixes: haproxy: untrimm...

Moderate: Red Hat Security Advisory: haproxy security update

An update for haproxy is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

The vulnerability of the haproxy-boshrelease component of the Cloud Foundry multi-cloud application platform allows a attacker to bypass the mTLS authentication checks.

The vulnerability of the HAProxy component in the Cloud Foundry multi-cloud applications relates to the ability to bypass authentication through spoofing. Exploiting this vulnerability allows a malicious actor to circumvent mTLS authentication checks...

Fedora 41 : haproxy (2024-bd2368f66a)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-bd2368f66a advisory. Update to 3.0.4 CVE-2024-45506, 2309472 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...

RLSA-2024:8849 Moderate: haproxy security update

The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications. Security Fixes: haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers CVE-2023-45539 For more details about the security issues, including th...

haproxy security update

An update is available for haproxy. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The haproxy packages provide a reliable, high-performance network load balanc...

RockyLinux 8 : haproxy (RLSA-2024:8849)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:8849 advisory. haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers CVE-2023-45539 Tenable has extracted the preceding description block...

The vulnerability of the server software HAProxy, related to bypassing authentication through spoofing, allows attackers to circumvent the functionality of the allowed/IP addresses list.

The vulnerability of the server-side software HAProxy relates to the bypassing of authentication mechanisms through spoofing. Exploiting this vulnerability allows a malicious actor to circumvent the functionality of the allowed/IP addresses list...

CLSA-2024-1730920903 haproxy: Fix of CVE-2023-45539

Fix CVE-2023-45539: fix potential information disclosure by not accepting '' as a part of the URI component...

RHSA-2024:8849 Red Hat Security Advisory: haproxy security update

Bulletin has no description...

RHSA-2024:8874 Red Hat Security Advisory: haproxy security update

Bulletin has no description...

Oracle Linux 8 : haproxy (ELSA-2024-8849)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8849 advisory. 1.8.27-5.1 - Reject '' as part of URI path component CVE-2023-45539, RHEL-18168 Tenable has extracted the preceding description block directly from the Oracle...

AlmaLinux 8 : haproxy (ALSA-2024:8849)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2024:8849 advisory. haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers CVE-2023-45539 Tenable has extracted the preceding description block...

RHEL 8 : haproxy (RHSA-2024:8874)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8874 advisory. The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications. Security Fixes: haproxy: untrimm...

Moderate: Red Hat Security Advisory: haproxy security update

An update for haproxy is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

Moderate: Red Hat Security Advisory: haproxy security update

An update for haproxy is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...