HAProxy 2.5 Dev 6
Approved changes feed: RSS · Atom
cpe:2.3:a:haproxy:haproxy:2.5:dev6:*:*:*:*:*:*
part: a version: 2.5 update: dev6
| Vendor | Haproxy (bcdccbbb-bab3-5a27-b98b-5345a425d85c) |
|---|---|
| Product | Haproxy (0acaea08-d114-576a-98cc-ac99b15c19b7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/haproxy |
purl2cpe | 2026-06-01 10:18:18.559591 |
pkg:deb/ubuntu/haproxy |
purl2cpe | 2026-06-01 10:18:18.559593 |
pkg:docker/haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559594 |
pkg:github/haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559596 |
pkg:haproxy/haproxy |
purl2cpe | 2026-06-01 10:18:18.559597 |
pkg:rpm/fedora/haproxy |
purl2cpe | 2026-06-01 10:18:18.559598 |
pkg:rpm/opensuse/haproxy |
purl2cpe | 2026-06-01 10:18:18.559600 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-40346 |
vulnerable | 2026-06-08 05:35:17.467661 |
Details available
An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.
Published: 2021-09-08T16:40:38.000Z
Updated: 2024-08-04T02:27:31.887Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.