7.5

CVE-2021-40346

Exploit

An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HaproxyHaproxy Version >= 2.0.0 < 2.0.25
HaproxyHaproxy Version >= 2.2.0 < 2.2.17
HaproxyHaproxy Version >= 2.3.0 < 2.3.14
HaproxyHaproxy Version >= 2.4.0 < 2.4.4
HaproxyHaproxy Version2.5 Updatedev0
HaproxyHaproxy Version2.5 Updatedev1
HaproxyHaproxy Version2.5 Updatedev2
HaproxyHaproxy Version2.5 Updatedev3
HaproxyHaproxy Version2.5 Updatedev4
HaproxyHaproxy Version2.5 Updatedev5
HaproxyHaproxy Version2.5 Updatedev6
DebianDebian Linux Version11.0
FedoraprojectFedora Version33
FedoraprojectFedora Version34
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 92.83% 0.998
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.