Home
HIGH: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HDefault status
unaffected
2.4.0 (semver) before 2.4.30
affected
2.6.0 (semver) before 2.6.23
affected
2.8.0 (semver) before 2.8.16
affected
3.0.0 (semver) before 3.0.12
affected
3.1.0 (semver) before 3.1.9
affected
3.2.0 (semver) before 3.2.6
affected
Description
Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.
Problem types
CWE-407 Inefficient Algorithmic Complexity
Product status
2.4.0 (semver) before 2.4.30
2.6.0 (semver) before 2.6.23
2.8.0 (semver) before 2.8.16
3.0.0 (semver) before 3.0.12
3.1.0 (semver) before 3.1.9
3.2.0 (semver) before 3.2.6
References
www.haproxy.com/...n-library-denial-of-service-vulnerability
