PT-2021-7490 · Haproxy+5 · Haproxy+5

Ori Hollander

Published

2021-09-07

Updated

2024-06-15

CVE-2021-40346

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions HAProxy versions 2.0 through 2.5

Description An integer overflow exists in the htx add header function that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs. This issue affects the integrity of data and can be exploited by a remote attacker.

Recommendations For HAProxy versions 2.0 through 2.5, consider disabling the htx add header function until a patch is available to prevent HTTP request smuggling attacks. Restrict access to the htx add header function to minimize the risk of exploitation. Avoid using the htx add header function in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALSA-2023_1696

ALSA-2023_6496

ALSA-2024_1142

ALT-PU-2022-3040

ALT-PU-2023-1151

ALT-PU-2023-5100

BDU:2022-06893

BIT-HAPROXY-2021-40346

CVE-2021-40346

DSA-4968-1

OESA-2021-1367

OPENSUSE-SU-2021:1329-1

OPENSUSE-SU-2021:2975-1

OPENSUSE-SU-2021_1329-1

OPENSUSE-SU-2021_2975-1

OPENSUSE-SU-2024:10839-1

RHSA-2021:4118

RHSA-2021:5208

RHSA-2022:0024

RHSA-2022:0114

SUSE-SU-2021:2975-1

SUSE-SU-2021:3257-1

SUSE-SU-2021:3258-1

SUSE-SU-2021_2975-1

SUSE-SU-2021_3257-1

SUSE-SU-2021_3258-1

USN-5063-1

Affected Products

Alt Linux

Astra Linux

Haproxy

Linuxmint

Suse

Ubuntu

PT-2021-7490 · Haproxy+5 · Haproxy+5

CVE-2021-40346

Weakness Enumeration

Related Identifiers

Affected Products

References · 73