- Description
- Inconsistent interpretation of HTTP requests ('HTTP Request/Response Smuggling') issue exists in HAProxy. If this vulnerability is exploited, a remote attacker may access a path that is restricted by ACL (Access Control List) set on the product. As a result, the attacker may obtain sensitive information.
- Source
- vultures@jpcert.or.jp
- NVD status
- Received
CVSS 3.0
- Type
- Secondary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
- vultures@jpcert.or.jp
- CWE-444
- Hype score
- Not currently trending
【CVE-2024-53008】当社エンジニアが発見・報告した脆弱性情報に「HAProxy における HTTP リクエストスマグリングの脆弱性」を追加しました。CVSSによる深刻度は5.3(警告)です。 #脆弱性 #情報セキュリティ https://t.co/UoH6QTRszn
@FFRI_PR
29 Nov 2024
78 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53008 HTTP Request Smuggling in HAProxy Exposes Sensitive Data There's a problem in HAProxy with how it handles HTTP requests, known as 'HTTP Request/Response Smuggling.' If someone exploits this vulnera... https://t.co/1hdxAtu4Be
@VulmonFeeds
28 Nov 2024
32 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
CVE-2024-53008 Inconsistent interpretation of HTTP requests ('HTTP Request/Response Smuggling') issue exists in HAProxy. If this vulnerability is exploited, a remote attacker may a… https://t.co/WpcaJyrNQe
@CVEnew
28 Nov 2024
473 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes