haproxy vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the haproxy package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
L CVE-2025-11230	<3.2.5-2
L HTTP Request Smuggling	<2.9.10-1
C CVE-2023-25725	<2.6.8-2
H HTTP Request Smuggling	<2.0.6-1
M CVE-2021-39241	<2.2.16-1
H CVE-2021-39240	<2.2.16-1
M Out-of-Bounds	<1.4.23-1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1.8.15-1
L CVE-2024-49214	<2.9.11-1
H CVE-2024-45506	<2.9.10-1
H Improper Handling of Exceptional Conditions	<2.2.16-1
H Information Exposure	<2.6.8-1
M Out-of-Bounds	<1.4.23-1
L CVE-2025-32464	<3.0.10-1
H CVE-2023-45539	<2.6.15-1
H Integer Overflow or Wraparound	<2.2.16-3
H HTTP Request Smuggling	<2.6.15-1
M Resource Exhaustion	<2.6.8-1
H Out-of-bounds Write	<2.0.13-2
H Out-of-Bounds	<1.8.8-1
H HTTP Request Smuggling	<2.6.8-1
H Out-of-bounds Read	<1.8.16-2
H Out-of-bounds Read	<1.8.13-2
M Improper Input Validation	<1.4.24-1
H Out-of-Bounds	<1.6.5-2
H CVE-2023-44487	<1.8.13-1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<2.4.13-1
M Information Exposure	<1.8.9-2
M Numeric Errors	<1.5.4-1
M Out-of-Bounds	<1.5.14-1
C Arbitrary Code Injection	<2.0.10-1
H Out-of-bounds Read	<1.8.15-1