Lucene search
Ubuntu.comUB:CVE-2023-25950HistoryApr 11, 2023 - 12:00 a.m.
CVE-2023-25950
2023-04-1100:00:00
ubuntu.com
ubuntu.com
14
0.002 Low
EPSS
Percentile
54.2%
HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and
2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user’s
request. As a result, the attacker may obtain sensitive information or
cause a denial-of-service (DoS) condition.
Notes
| Author | Note |
|---|---|
| mdeslaur | HTTP/3 support introduced in 2.6 |
Related
redhatcve
redhatcve
CVE-2023-25950
2023-04-11 12:59:53
cve
cve
CVE-2023-25950
2023-04-11 09:15:07
osv
osv
BIT-haproxy-2023-25950
2024-03-06 10:53:25
CVE-2023-25950
2023-04-11 09:15:07
debiancve
debiancve
CVE-2023-25950
2023-04-11 09:15:07
veracode
veracode
HTTP Request/Response Smuggling
2023-04-17 02:40:31
jvn
jvn
JVN#38170084: HAProxy vulnerable to HTTP request/response smuggling
2023-03-31 00:00:00
prion
prion
Race condition
2023-04-11 09:15:00
cvelist
cvelist
CVE-2023-25950
2023-04-11 00:00:00
nessus
nessus
RHEL 7 : haproxy (Unpatched Vulnerability)
2024-05-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2400
2024-04-17 13:35:24