CVE-2024-37082 Information

Description

Security check loophole in HAProxy release (in combination with routing release) in Cloud Foundry prior to v40.17.0 potentially allows bypass of mTLS authentication to applications hosted on Cloud Foundry.

Reference

https://www.cloudfoundry.org/blog/cve-2024-37082-mtls-bypass/