CVE-2024-49214

Summary

CVE-2024-49214 is a vulnerability found in HAProxy versions 3.1.x prior to 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11, which allows the establishment of a 0-RTT session using a spoofed IP address, potentially bypassing IP allow/block lists. This vulnerability poses a medium severity risk with an exploitability score of 3.9, requiring no special privileges or user interaction for exploitation, and it operates over the network with low attack complexity. Organizations utilizing affected HAProxy versions may face risks related to unauthorized access, as the integrity of session management could be compromised. To remediate this issue, users are advised to upgrade to the latest versions of HAProxy that address this vulnerability, specifically version 3.1-dev7 or later for the 3.1.x branch, version 3.0.5 or later for the 3.0.x branch, and version 2.9.11 or later for the 2.9.x branch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.