HTTP Request Smuggling Vulnerability in HAProxy by HAProxy Technologies
CVE-2019-18277

7.5HIGH

Key Information:

Vendor

Haproxy

Status
Haproxy
Vendor
CVE Published:
23 October 2019

What is CVE-2019-18277?

The vulnerability in HAProxy arises from a flaw in legacy mode where the absence of a 'chunked' value in the transfer-encoding header is not properly rejected. If combined with the 'http-reuse always' setting, this could facilitate HTTP request smuggling attacks on components that use parsers lenient to the content-length header, leading to potential security exploitation.

References

https://www.mail-archive.com/haproxy%40formilux.org/msg34...
x_refsource_MISC
https://nathandavison.com/blog/haproxy-http-request-smugg...
x_refsource_MISC
https://git.haproxy.org/?p=haproxy-2.0.git%3Ba=commit%3Bh...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.