Security Advisory

CVE-2018-11469

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-05-25 14:00:00

Last updated 2024-08-05 08:10:14

Assigner mitre

State PUBLISHED

Description

Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attackers to achieve information disclosure via an unauthenticated remote request, related to the proto_http.c check_request_for_cacheability function.

← Browse all CVEs View on cve.org ↗