HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy=. =HAProxy suffers from an input validation error vulnerability, which stems from a lack of header name length checking in the htx_add_header() and htx_add_trailer() functions in HAProxy, and can be exploited by an attacker to cause a request smuggling attack or a response splitting attack.
CPE | Name | Operator | Version |
---|---|---|---|
HAProxy HAProxy >=2.0, | le | 2.5 |