Vulnerability Description
HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers, violating RFC 9110 section 8.6. In uncommon cases, an HTTP/1 server behind HAProxy may interpret the payload as an extra request.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Haproxy | Haproxy | <= 2.0.32 |
Related Weaknesses (CWE)
References
- https://cwe.mitre.org/data/definitions/436.htmlTechnical Description
- https://github.com/haproxy/haproxy/commit/6492f1f29d738457ea9f382aca54537f35f9d8Patch
- https://github.com/haproxy/haproxy/issues/2237ExploitIssue TrackingVendor Advisory
- https://www.haproxy.org/download/2.6/src/CHANGELOGRelease Notes
- https://www.haproxy.org/download/2.7/src/CHANGELOGRelease Notes
- https://www.haproxy.org/download/2.8/src/CHANGELOGRelease Notes
- https://cwe.mitre.org/data/definitions/436.htmlTechnical Description
- https://github.com/haproxy/haproxy/commit/6492f1f29d738457ea9f382aca54537f35f9d8Patch
- https://github.com/haproxy/haproxy/issues/2237ExploitIssue TrackingVendor Advisory
- https://www.haproxy.org/download/2.6/src/CHANGELOGRelease Notes
- https://www.haproxy.org/download/2.7/src/CHANGELOGRelease Notes
- https://www.haproxy.org/download/2.8/src/CHANGELOGRelease Notes
FAQ
What is CVE-2023-40225?
CVE-2023-40225 is a vulnerability with a CVSS score of 7.2 (HIGH). HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers...
How severe is CVE-2023-40225?
CVE-2023-40225 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-40225?
Check the references section above for vendor advisories and patch information. Affected products include: Haproxy Haproxy.