DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-49214

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-49214

CGA ID

CGA-8p7w-59vp-qhgj

Description

QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the IP allow/block list functionality.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images