VYPR
Medium severity5.3OSV Advisory· Published Oct 14, 2024· Updated Apr 15, 2026

CVE-2024-49214

CVE-2024-49214

Description

QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the IP allow/block list functionality.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.