Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in HAPProxy

Before version 2.8.2, HAProxy allowed to be part of the URI component. This could allow remote attackers to obtain sensitive information or cause unspecified other issues due to misinterpretation of the pathend rule, such as routing index.html.png to a static server...

8.2CVSS6.8AI score0.01526EPSS
Exploits0References2
CVE
CVE
added 2026/05/27 12:17 p.m.22 views

CVE-2026-45924

Summary: CVE-2026-45924 affects ksmbd in the Linux kernel. The vulnerability arises because ksmbd_vfs_kern_path_end_removing() is not called on certain error paths, leaving inode locks and references unbalanced after a prior ksmbd_vfs_kern_path_start_removing(). This can cause potential deadlocks...

5.5CVSS5.8AI score0.0012EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/04/16 12:32 p.m.4 views

CLSA-2026-1776342757 haproxy: Fix of CVE-2023-45539

CVE-2023-45539: reject '' as part of the URI to prevent ACL bypass via pathend rules...

8.2CVSS6.8AI score0.01526EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/27 10:23 p.m.6 views

EUVD-2026-16322

path-to-regexp vulnerable to Regular Expression Denial of Service via multiple wildcards...

5.9CVSS5.9AI score0.00353EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/19 12:50 a.m.16 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/05 3:56 a.m.65 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/05 1:26 a.m.44 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/31 12:44 a.m.3 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
OSV
OSV
added 2024/07/23 4:55 p.m.6 views

USN-6530-2 haproxy vulnerability

Seth Manesse and Paul Plasil discovered that HAProxy incorrectly handled URI components containing the hash character . A remote attacker could possibly use this issue to obtain sensitive information, or to bypass certain pathend rules...

8.2CVSS5.8AI score0.01526EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/03/05 6:19 p.m.4 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/03/05 8:20 a.m.3 views

haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6AI score0.01526EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2023/12/05 1:12 p.m.61 views

USN-6530-1: HAProxy vulnerability

It was discovered that HAProxy incorrectly handled URI components containing the hash character . A remote attacker could possibly use this issue to obtain sensitive information, or to bypass certain pathend rules...

8.2CVSS6.9AI score0.01526EPSS
Exploits0
OSV
OSV
added 2023/12/04 12:0 a.m.1 views

UBUNTU-CVE-2023-45539

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS5.9AI score0.01526EPSS
Exploits0References6
OSV
OSV
added 2023/11/28 8:15 p.m.2 views

DEBIAN-CVE-2023-45539

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6.8AI score0.01526EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/11/28 8:15 p.m.3 views

CVE-2023-45539

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS6.8AI score0.01526EPSS
Exploits0References7
OSV
OSV
added 2023/11/28 8:15 p.m.4 views

AZL-32061 CVE-2023-45539 affecting package haproxy for versions less than 2.4.24-1

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

8.2CVSS5.9AI score0.01526EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.3 views

HAProxy Security Vulnerabilities

HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy. The server provides 4-layer and 7-layer proxies and can support tens of thousands of levels of connections with high efficiency and stability. A security vulnerability exists in HAProxy versions prior to...

8.2CVSS6.7AI score0.01526EPSS
Exploits0References5
Rows per page
Query Builder