HAProxy 2.5 Dev 3
Approved changes feed: RSS · Atom
cpe:2.3:a:haproxy:haproxy:2.5:dev3:*:*:*:*:*:*
part: a version: 2.5 update: dev3
| Vendor | Haproxy (bcdccbbb-bab3-5a27-b98b-5345a425d85c) |
|---|---|
| Product | Haproxy (0acaea08-d114-576a-98cc-ac99b15c19b7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/haproxy |
purl2cpe | 2026-06-01 10:18:18.559563 |
pkg:deb/ubuntu/haproxy |
purl2cpe | 2026-06-01 10:18:18.559564 |
pkg:docker/haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559566 |
pkg:github/haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559567 |
pkg:haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559568 |
pkg:rpm/fedora/haproxy |
purl2cpe | 2026-06-01 10:18:18.559570 |
pkg:rpm/opensuse/haproxy |
purl2cpe | 2026-06-01 10:18:18.559571 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-40346 |
vulnerable | 2026-06-08 05:35:17.465899 |
Details available
An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.
Published: 2021-09-08T16:40:38.000Z
Updated: 2024-08-04T02:27:31.887Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.