CNVD-2022-05867 — Vulnetix

CNVD-2022-05867 PUBLISHED

HAProxy是法国HAProxy=公司的一款开源的TCP/HTTP负载均衡服务器。= HAProxy存在输入验证错误漏洞，该漏洞源于HAProxy中的htx_add_header()和htx_add_trailer() 函数中缺少标头名称长度检查，攻击者可利用漏洞导致请求走私攻击或响应拆分攻击。

Exploit Intelligence

HAProxy CVE-2021-40346 (github-poc-repo)
HAProxy CVE-2021-40346 (github-poc-repo)
HTTP Request Smuggling (github-poc-repo)
HTTP Request Smuggling (github-poc-repo)
HTTP Request Smuggling (github-poc)
HTTP Request Smuggling (github-poc)
HAProxy CVE-2021-40346 (github-poc)
HAProxy CVE-2021-40346 (github-poc)
alikarimi999/CVE-2021-40346 (github-poc)
alikarimi999/CVE-2021-40346 (github-poc)

…and 8 more exploits

Timeline

Sep 8, 2021 CVE Published

Open in Interactive Console →

$ Console Community · 100/wk Open console ›