CVE-2021-40346

Description from NVD

An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.

Information Acquisition Date:2021-09-13T14:30Z
CVSS 2.0: 0.0 None CVSS 3.x: 0.0 None

NVD References

 https://git.haproxy.org/?p=haproxy.git
     source:MISC
     tags:
 DSA-4968
     source:DEBIAN
     tags:
 https://www.mail-archive.com/haproxy@formilux.org
     source:MISC
     tags:
 https://www.mail-archive.com/haproxy@formilux.org/msg41114.html
     source:MISC
     tags:
 https://jfrog.com/blog/critical-vulnerability-in-haproxy-cve-2021-40346-integer-overflow-enables-http-smuggling/
     source:MISC
     tags:
 https://github.com/haproxy/haproxy/commit/3b69886f7dcc3cfb3d166309018e6cfec9ce2c95
     source:MISC
     tags:
 [cloudstack-dev] 20210910 CVE-2021-40346 (haproxy 2.x)
     source:MLIST
     tags:
 [cloudstack-dev] 20210910 Re: CVE-2021-40346 (haproxy 2.x)
     source:MLIST
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Apple(1 tweets) Linux(1 tweets) iOS(1 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://jfrog.com/blog/critical-vulnerability-in-haproxy-cv...41
http://twinybots.ch36
https://github.com/knqyf263/CVE-2021-403466
https://twitter.com/chybeta/status/14359481152747356163
https://rssfeeds.cloudsite.builders/2021/09/08/critical-vul...3

▼ Show Information from Twitter(101)


List of frequently cited URLs

URLNum of Times Referred to
jfrog.com41
twinybots.ch36
github.com6
twitter.com3
rssfeeds.cloudsite.builders3

▼ Show Information from Twitter(101)


GitHub Search Results: Up to 10
NameURL
knqyf263/CVE-2021-40346 https://github.com/knqyf263/CVE-2021-40346

GitHub Search Results: Up to 10
NameURL
knqyf263/CVE-2021-40346 github.com

2021/09/16 Score : 1
Added Har-sia Database : 2021/09/08
Last Modified : 2021/09/16
Highest Scored Date : 2021/09/09
Highest Score : 31