Summary

Acunetix 360 detected that your website uses the HAProxy. HAProxy is open source software that provides a high availability load balancer and proxy server for TCP and HTTP-based applications.

Impact

This issue is reported as additional information only. There is no direct impact arising from this issue. However, Acunetix 360 was not able to identify the HAProxy version that you are currently using. Please make sure that it is fully patched and up-to-date. Notable vulnerabilities that were found in recent years include CVE-2019-14241 (HAProxy through 2.0.2 allows attackers to cause a denial of service (ha_panic) via vectors related to htx_manage_client_side_cookies in proto_htx.c.) and CVE-2019-11323 (Mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys.)

Severity

Information

Classification

CAPEC-224 CWE-200 ISO27001-A.18.1.3 WASC-45