VDB
CVE-2025-11230
CVE-2025-11230
PUBLISHED
Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.
EPSS 0.47% · 64.9th percentile
Risk Scores
EPSS Score
0.47%
64.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | haproxy | 3.2.0, 2.4.0, 2.6.0 |
| Bitnami | haproxy | 2.6.0, 2.8.0, 3.0.0 |
Exploit Intelligence
- http://www.openwall.com/lists/oss-security/2025/11/27/4 (circl)
- https://github.com/OpenPrinting/cups/security/advisories/GHSA-8wpw-vfgm-qrrr (circl)
- https://github.com/OpenPrinting/cups/commit/40008d76a001babbb9beb9d9d74b01a86fb6ddb4 (circl)
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.15 (circl)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
- CIRCL seen: CVE-2025-58436 (circl-sighting)
Timeline
- Oct 1, 2025 CVE ID Reserved
- Nov 19, 2025 EPSS Score
- Nov 19, 2025 Coalition ESS Score
- Nov 19, 2025 CVE Published
- Nov 19, 2025 CVE Updated
- Nov 24, 2025 EPSS Score
- Nov 27, 2025 Coalition ESS Score
- Nov 27, 2025 PoC Published
- Nov 27, 2025 PoC Published
- Nov 29, 2025 EPSS Score
- Nov 29, 2025 PoC Published
- Dec 1, 2025 PoC Published