0.002 Low
EPSS
Percentile
55.2%
HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/ssl_sock.h error.
bugzilla.redhat.com/show_bug.cgi?id=1709229
nvd.nist.gov/vuln/detail/CVE-2019-11323
www.cve.org/CVERecord?id=CVE-2019-11323