AI Score
Confidence
High
EPSS
Percentile
82.6%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service.
[
{
"cpes": [
"cpe:2.3:a:haproxy:haproxy:*:*:*:*:*:*:*:*"
],
"vendor": "haproxy",
"product": "haproxy",
"versions": [
{
"status": "affected",
"version": "2.9.0",
"lessThan": "2.9.10",
"versionType": "custom"
},
{
"status": "affected",
"version": "3.0.0",
"lessThan": "3.0.4",
"versionType": "custom"
},
{
"status": "affected",
"version": "3.1.0",
"lessThan": "3.1-dev6",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]
git.haproxy.org/?p=haproxy-3.0.git%3Ba=commitdiff%3Bh=c725db17e8416ffb3c1537aea756356228ce5e3c
git.haproxy.org/?p=haproxy-3.0.git%3Ba=commitdiff%3Bh=d636e515453320c6e122c313c661a8ac7d387c7f
www.haproxy.org/
www.haproxy.org/download/3.1/src/CHANGELOG
www.mail-archive.com/haproxy%40formilux.org/msg45280.html
www.mail-archive.com/haproxy%40formilux.org/msg45281.html