CVE-2018-11469

EUVD-2018-3500
Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attackers to achieve information disclosure via an unauthenticated remote request, related to the proto_http.c check_request_for_cacheability function.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
Affected Products (NVD)
VendorProductVersion
haproxyhaproxy
1.8.0 ≤
𝑥
≤ 1.8.9
canonicalubuntu_linux
18.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
haproxy
bookworm
2.6.12-1+deb12u1
fixed
bookworm (security)
2.6.12-1+deb12u1
fixed
bullseye
2.2.9-2+deb11u6
fixed
bullseye (security)
2.2.9-2+deb11u6
fixed
jessie
not-affected
sid
2.9.11-1
fixed
stretch
not-affected
trixie
2.9.11-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
haproxy
artful
not-affected
bionic
Fixed 1.8.8-1ubuntu0.1
released
trusty
dne
xenial
not-affected
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/104347
https://access.redhat.com/errata/RHSA-2019:1436
https://git.haproxy.org/?p=haproxy-1.8.git%3Ba=commit%3Bh=17514045e5d934dede62116216c1b016fe23dd06
https://usn.ubuntu.com/3663-1/
http://www.securityfocus.com/bid/104347
https://access.redhat.com/errata/RHSA-2019:1436
https://git.haproxy.org/?p=haproxy-1.8.git%3Ba=commit%3Bh=17514045e5d934dede62116216c1b016fe23dd06
https://usn.ubuntu.com/3663-1/