{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T03:13:15.435","vulnerabilities":[{"cve":{"id":"CVE-2024-53008","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-11-28T03:15:16.363","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Inconsistent interpretation of HTTP requests ('HTTP Request/Response Smuggling') issue exists in HAProxy. If this vulnerability is exploited, a remote attacker may access a path that is restricted by ACL (Access Control List) set on the product. As a result, the attacker may obtain sensitive information."},{"lang":"es","value":"Existe un problema de interpretaciĆ³n inconsistente de las solicitudes HTTP ('Contrabando de solicitudes/respuestas HTTP') en HAProxy. Si se aprovecha esta vulnerabilidad, un atacante remoto puede acceder a una ruta restringida por la ACL (lista de control de acceso) establecida en el producto. Como resultado, el atacante puede obtener informaciĆ³n confidencial."}],"metrics":{"cvssMetricV30":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-444"}]}],"references":[{"url":"https://git.haproxy.org/?p=haproxy-2.6.git;a=commit;h=1afca10150ac3e4e2224055cc31b6f1e4a70efe2","source":"vultures@jpcert.or.jp"},{"url":"https://git.haproxy.org/?p=haproxy-2.8.git;a=commit;h=01c1056a44823c5ffb8f74660b32c099d9b5355b","source":"vultures@jpcert.or.jp"},{"url":"https://git.haproxy.org/?p=haproxy-2.9.git;a=commit;h=4bcaece344c8738dac1ab5bd8cc81e2a22701d71","source":"vultures@jpcert.or.jp"},{"url":"https://git.haproxy.org/?p=haproxy-3.0.git;a=commit;h=95a607c4b3af09be2a495b9c2872ea252ccff603","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/jp/JVN88385716/","source":"vultures@jpcert.or.jp"},{"url":"https://www.haproxy.org/","source":"vultures@jpcert.or.jp"}]}}]}