Security Advisory

CVE-2022-31125

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-06 00:00:00
Last updated 2025-04-23 18:04:54
Assigner GitHub_M
State PUBLISHED

Description

Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi allows a remote, unauthenticated attacker to bypass authentication and access admin functionality by sending a specially crafted HTTP request. This affects Roxywi versions before 6.1.1.0. Users are advised to upgrade. There are no known workarounds for this issue.