CVE-2019-14241

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-14241

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-14241.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-14241

Downstream

SUSE-SU-2019:3001-1

SUSE-SU-2019:3002-1

openSUSE-SU-2019:2555-1

openSUSE-SU-2019:2556-1

openSUSE-SU-2024:10839-1

Related

Published

2019-07-23T13:15:13.240Z

Modified

2025-11-14T09:13:04.506839Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

HAProxy through 2.0.2 allows attackers to cause a denial of service (hapanic) via vectors related to htxmanageclientsidecookies in protohtx.c.

References

Affected packages

Git / github.com/haproxy/haproxy

Affected ranges

Type: GIT
Repo: https://github.com/haproxy/haproxy
Events: Introduced

e18fdfdb8504e1d8e57f74cb3228b01a9fc5af4b

Last affected

0b936ad946719652affa17f9d79403cd2e0c3faf

Introduced

ba23630ad009464dc8e4d01dac9ce779eb84cc2a

Last affected

6e893b9931c2b87d93a8e31e269a823b6bdafe1a

Affected versions

v1.*

v1.4.0

v1.4.1

v1.4.2

v1.4.3

v1.4.4

v1.4.5

v1.4.6

v1.5-dev10

v1.5-dev12

v1.5-dev13

v1.5-dev14

v1.5-dev15

v1.5-dev16

v1.5-dev17

v1.5-dev18

v1.5-dev19

v1.5-dev20

v1.5-dev21

v1.5-dev22

v1.5-dev23

v1.5-dev24

v1.5-dev25

v1.5-dev26

v1.5-dev8

v1.5-dev9

v1.5.0

v1.6-dev0

v1.6-dev1

v1.6-dev2

v1.6-dev3

v1.6-dev4

v1.6-dev5

v1.6-dev6

v1.6-dev7

v1.6.0

v1.7-dev0

v1.7-dev1

v1.7-dev2

v1.7-dev3

v1.7-dev4

v1.7-dev5

v1.7-dev6

v1.7.0

v1.8-dev0

v1.8-dev1

v1.8-dev2

v1.8-dev3

v1.8-rc1

v1.8-rc2

v1.8-rc3

v1.8-rc4

v1.8.0

v1.9-dev0

v1.9-dev1

v1.9-dev2

v1.9-dev3

v1.9-dev4

v1.9-dev5

v1.9-dev6

v1.9-dev7

v1.9-dev8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-14241.json"