CVE-2024-45506

Summary

CVE-2024-45506 is a vulnerability affecting HAProxy versions 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6, which allows for a remote denial of service (DoS) attack. The potential impact of this vulnerability is rated as high, with an availability impact score indicating that it could significantly disrupt service availability without requiring user interaction or elevated privileges. To remediate this issue, organizations are advised to update HAProxy to the latest versions that address this vulnerability. Failure to mitigate this risk could lead to service disruptions and affect operational continuity for organizations relying on these affected versions of HAProxy in their infrastructure. The exploitability score for this vulnerability is recorded at 3.9 out of 10, indicating a moderate level of ease in executing an attack against affected systems over the network.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.