VYPR
Unrated severityNVD Advisory· Published Apr 10, 2013· Updated Jun 16, 2026

CVE-2013-1912

CVE-2013-1912

Description

Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Haproxy/Haproxy6 versions
    cpe:2.3:a:haproxy:haproxy:1.4:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:haproxy:haproxy:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:haproxy:haproxy:1.4.20:*:*:*:*:*:*:*
    • cpe:2.3:a:haproxy:haproxy:1.4.22:*:*:*:*:*:*:*
    • cpe:2.3:a:haproxy:haproxy:1.5:dev:*:*:*:*:*:*
    • cpe:2.3:a:haproxy:haproxy:1.5:dev17:*:*:*:*:*:*
    • (no CPE)range: 1.4 - 1.4.22, 1.5-dev - 1.5-dev17

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.