CVE-2025-11230 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-11230 PUBLISHED

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.

EPSS 0.41% · 61.1th percentile

Risk Scores

EPSS Score

0.41%

61.1th percentile

Affected Products

Vendor	Product	Versions
Bitnami	haproxy	3.2.0, 2.4.0, 2.6.0
Bitnami	haproxy	2.4.0, 2.6.0, 2.8.0

Timeline

Oct 1, 2025 CVE ID Reserved
Nov 19, 2025 EPSS Score
Nov 19, 2025 Coalition ESS Score
Nov 19, 2025 CVE Published
Nov 19, 2025 CVE Updated
Nov 23, 2025 EPSS Score
Nov 27, 2025 Coalition ESS Score
Nov 27, 2025 PoC Published
Nov 27, 2025 PoC Published
Nov 28, 2025 EPSS Score
Nov 29, 2025 PoC Published
Dec 1, 2025 PoC Published

References

Open in Interactive Console →