Home

CVE-2019-18277

Description

A flaw was found in HAProxy before 2.0.6. In legacy mode, messages featuring a transfer-encoding header missing the chunked value were not being correctly rejected. The impact was limited but if combined with the http-reuse always setting, it could be used to help construct an HTTP request smuggling attack against a vulnerable component employing a lenient parser that would ignore the content-length header as soon as it saw a transfer-encoding one (even if not entirely valid according to the specification).

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.967

Associated Vulnerability

VulnerabilityOS Platform
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.6.3-1ubuntu0.3_i386.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.6.3-1ubuntu0.3_amd64.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.8.8-1ubuntu0.7_i386.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.8.8-1ubuntu0.7_amd64.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_2.0.5-1ubuntu0.2_i386.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_2.0.5-1ubuntu0.2_amd64.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.8.19-1ubuntu1.2_i386.debLinux
fast and reliable load balancing reverse proxy (USN-4174-1) haproxy_1.8.19-1ubuntu1.2_amd64.debLinux
(RHSA-2020:1725) haproxy security, bug fix, and enhancement update haproxy-1.8.23-3.el8.x86_64.rpmLinux
(RHSA-2020:1725) haproxy security, bug fix, and enhancement update haproxy-debugsource-1.8.23-3.el8.x86_64.rpmLinux
(CESA-2020:1725) haproxy security, bug fix, and enhancement update haproxy-1.8.23-3.el8.x86_64.rpmLinux
(RHSA-2020:1725)Moderate: security, bug fix, and enhancement update haproxy-debuginfo-1.8.23-3.el8.x86_64.rpmLinux
Haproxy update (ELSA-2020-1725) haproxy-1.8.23-3.el8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234