CVE-2019-14243

headerv2.go in mastercactapus proxyprotocol before 0.0.2, as used in the mastercactapus caddy-proxyprotocol plugin through 0.0.2 for Caddy, allows remote attackers to cause a denial of service (webserver panic and daemon crash) via a crafted HAProxy PROXY v2 request with truncated source/destination address data.
Configurations

Configuration 1 (hide)

cpe:2.3:a:haproxy:proxyprotocol:*:*:*:*:*:caddy:*:*

History

No history.

Information

Published : 2019-07-23 22:15

Updated : 2024-02-28 17:08


NVD link : CVE-2019-14243

Mitre link : CVE-2019-14243

CVE.ORG link : CVE-2019-14243


JSON object : View

Products Affected

haproxy

  • proxyprotocol
CWE
CWE-20

Improper Input Validation