HAProxy Technologies HAProxy Technologies | Apr 1, 2022 | NEWS, SECURITY
Recently, a Remote Code Execution vulnerability was discovered in the Java Spring Core library. This vulnerability allows attackers to execute arbitrary code on affected systems. You can find more information on that vulnerability in the announcement on the Spring...
HAProxy Technologies HAProxy Technologies | Dec 13, 2021 | NEWS, SECURITY, TECH
This post will be updated over the next several days. Recently, a Remote Code Execution vulnerability was discovered in the Apache Log4J library. This vulnerability, which is tracked in CVE-2021-44228, dubbed Log4Shell, allows attackers to execute arbitrary code on...
Nick Ramirez Nick Ramirez | Mar 5, 2021 | SECURITY, TECH
The HAProxy Enterprise WAF with support for ModSecurity rulesets protects your web applications from sophisticated, Layer 7 threats left unhandled by network firewalls. Data breaches. Loss of consumer confidence. An endless cycle of companies being compromised....
Nick Ramirez Nick Ramirez | Oct 19, 2020 | SECURITY, TECH
HAProxy provides an easy and straightforward way to add HTTPS to your website. As a load balancer positioned in front of your web servers, it can handle all of the encryption and decryption duties, offloading those tasks from your upstream servers. That’s good...
Daniel Corbett Daniel Corbett | Sep 21, 2020 | NEWS, SECURITY
The OWASP ModSecurity Core Rule Set team has reported a Denial of Service vulnerability in ModSecurity version 3.x that allows an attacker to send a crafted payload that exploits a flaw in how regular expressions are matched within the software. A CVE (CVE-2020-15598)...