[HackerNews] HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack

A critical security vulnerability has been disclosed in HAProxy, a widely used open-source load balancer and proxy server, that could be abused by an adversary to possibly smuggle HTTP requests, resulting in unauthorized access to sensitive data and execution of arbitrary commands, effectively opening the door to an array of attacks.
Tracked as CVE-2021-40346, the Integer Overflow vulnerability

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] Anit-money laundering regulation for all crypto exchanges on Austrac’s wish list

All posts, ZDNet

Since gaining a level of regulatory oversight of cryptocurrency exchanges in late 2017, Austrac has had 456 registrations. But the agency wants more commitment from the sector over anti-money laundering and counter-terrorism financing issues. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ZDNet] Microsoft reveals authentication failures, system hijack vulnerabilities in Netgear routers

All posts, ZDNet

Microsoft says the bugs could have allowed “attackers to roam untethered through an entire organization.” Source: Read More (Latest topics for ZDNet in Security)

Read More

[SecurityWeek] Cruise Giant Carnival Says Customers Affected by Breach

All posts, Security Week

Carnival Corp. said Thursday that a data breach in March might have exposed personal information about customers and employees on Carnival Cruise Line, Holland America Line and Princess Cruises. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.