Protecting Against SAP NetWeaver Vulnerability (CVE-2025-31324) with HAProxy
Mitigate SAP NetWeaver CVE-2025-31324 with HAProxy. Learn how to block unauthenticated file uploads and protect your systems from severe risk.
Articles tagged as
Security
HAProxy goes big at KubeCon London 2025
Attendees were stunned by the scale of our presence at KubeCon London and the breadth and depth of our solutions — enabled by the HAProxy One platform.
Announcing HAProxy Enterprise 3.1
HAProxy Enterprise 3.1 delivers a brand new ADFSPIP Module and enhancements to the HAProxy Enterprise UDP Module, CAPTCHA Module, Global Profiling Engine, and more!
January 2025 – Multiple rsync CVEs impacting memory and file handling in Linux virtual images
The latest versions of HAProxy Fusion fix multiple rsync vulnerabilities related to memory handling and file management in HAProxy Fusion’s Linux-based virtual images. We will cover these CVEs here.
Lasting Impressions and Technical Tidbits From AWS re:Invent 2024
AWS re:Invent 2024 has officially wrapped up, but not everything that happens in Vegas stays in Vegas. Here are some key takeaways from our five days spent with AWS and app delivery enthusiasts.
Announcing HAProxy ALOHA 16.5
HAProxy ALOHA 16.5 is now available, bringing the new Bot Management Module, the new Network Management CLI, and more!
KubeCon NA 2024: Service Discovery, Security, and AI—Oh My!
AI Gateway
API Gateway
Event
Kubernetes
Load Balancing / Routing
Products
Security
Service Discovery
Bots
Though KubeCon North America 2024 has officially come to a close, the CNCF's flagship event has left us buzzing with residual excitement. Here's what we've learned throughout those four days.
Announcing HAProxy Enterprise 3.0
HAProxy Enterprise 3.0 extends HAProxy Enterprise’s legendary performance and flexibility and builds upon its cornerstone features.
Nearly 90% of our AI Crawler Traffic is From TikTok Parent Bytedance – Lessons Learned
TikTok’s web scraper, Bytespider, is reportedly aggressively sucking up content to fuel generative AI models. We also noticed this while reviewing bot management analytics. Here's what we've learned.
Announcing HAProxy Fusion 1.3
Product Release
Application Monitoring
Kubernetes
Load Balancing / Routing
Observability
Performance
Security
Service Discovery
HAProxy Fusion 1.3 is now available! New custom dashboards, high-performance Kubernetes service discovery, and optimized workflows bolster HAProxy Fusion's observability and flexibility.
Easily Remove Existing HAProxy Connections Made via Client Authentication
HAProxy Enterprise lets you immediately drop connections and remove the client if their certificate is revoked. Here's how to strengthen security without disrupting other users and customers.
September 2024 – CVE-2024-45506: endless loop in HTTP/2 with zero-copy forwarding in HAProxy
The latest versions of our products fix a vulnerability related to a possible endless loop in the HTTP/2 multiplexer when combined with zero-copy forwarding system in HAProxy, HAProxy Enterprise...
How To Identify Requests as Part of an End-To-End Tracing Strategy
Learn how HAProxy Enterprise can help financial services uniquely identify requests as part of a greater end-to-end tracing strategy.
Zero-Trust mTLS Automation With HAProxy and SPIFFE/SPIRE
Securing traffic between systems is critical. Follow along as we explain how to use SPIFFE and SPIRE to automatically generate and renew identities that include mTLS certificates.
Load Balancing RADIUS With HAProxy Enterprise UDP Module
HAProxy Enterprise now supports RADIUS load balancing with the new HAProxy Enterprise UDP Module. We'll outline the challenges with implementing RADIUS load balancing and how to solve them.
How to Reliably Block AI Crawlers Using HAProxy Enterprise
AI crawlers from large language model (LLM) companies often ignore the contents of robots.txt and crawl your site. If blocking AI crawlers is your goal, HAProxy Enterprise is the answer. Here's how.
The Customer Feedback Loop That Makes HAProxy G2’s Satisfaction Score Leader
HAProxy received a Satisfaction Score of 98 in the G2 Grid® Reports for Summer 2024, and that's no accident. See how HAProxy responds to user feedback to provide a world-class customer experience.
Scalable AWS Load Balancing and Security With HAProxy Fusion
Read highlights from Jakub Suchy's talk describing how HAProxy Fusion enhances both scalability and security for applications, including Kubernetes applications, on AWS.
July 2024 – CVE-2024-6387: RCE in OpenSSH's server
The latest versions of our products fix a vulnerability related to OpenSSH’s server (sshd), which is used in the public/private cloud images of HAProxy Enterprise...
July 2024 – CVE-2024-24791: HTTP/1.1 response code mishandling in golang products
The latest versions of our products fix a vulnerability related to HTTP/1.1 response code mishandling in products written in golang.
Reviewing Every New Feature in HAProxy 3.0
HAProxy 3.0 brings many improvements to simplicity, security, reliability, flexibility, and more. We'll dive into what’s new with detailed examples. It’s a long list, so get cozy and bring a snack!
Announcing HAProxy 3.0
HAProxy 3.0 maintains its edge over alternatives with best-in-class load balancing. Ready to upgrade? Here’s how to get started.
Announcing HAProxy ALOHA 16
With HAProxy ALOHA 16 comes our next-generation WAF, new load balancing algorithms, upgraded Linux kernel to 6.1, and better isolation of admin services.
Announcing HAProxy Enterprise 2.9
Introducing our next-generation HAProxy Enterprise WAF and HAProxy Enterprise Bot Management Module for unmatched security, performance, and reliability in a simple package.
HAProxy is Resilient to the HTTP/2 CONTINUATION Flood
Our implementation of the HTTP/2 protocol can effectively handle the CONTINUATION Flood.
Protect Against Netscaler Vulnerability CitrixBleed
In this post, we will show how you can use an HAProxy Enterprise load balancer to protect against CitrixBleed by placing it in front of your NetScaler instance(s).
December 2023 - CVE-2023-45539: HAProxy Accepts # as Part of the URI Component Fixed
We have received questions regarding CVE-2023-45539 issued in November 2023. The versions of our products released on Monday, 21 August 2023 to fix...
Web App Security vs. API Security: Unified Approaches Reign Supreme
While there are core differences between web apps and APIs, a unified security strategy is crucial. In this blog, we'll discuss why both types of security appear different yet are inherently linked.
Rate limiting based on AWS VPC ID
We show you how to implement rate limiting based on the ID of the Virtual Private Cloud in Amazon Web Services using HAProxy Enterprise.
Scalable Load Balancing & Security Made Simple at AWS re:Invent 2023
Watch our Lightning Talk at AWS re:Invent 2023 on how HAProxy Fusion and HAProxy Enterprise enable simple and scalable load balancing and security on AWS.
Why Implementing App Security Can Lead To Spiraling Costs
To avoid overspending, businesses should reevaluate their security vendors and prioritize a more cost-effective approach.
HAProxy is Not Affected by the HTTP/2 Rapid Reset Attack (CVE-2023-44487)
CVE-2023-44487 found in the HTTP/2 protocol could allow a DoS attack against web servers, reverse proxies, or other software. HAProxy products are unaffected, but we're monitoring the situation.
August 2023 - CVE-2023-40225: Empty content-length header vulnerability fixed
HAProxy Technologies released new versions of its products to fix the vulnerability CVE-2023-40225. Learn more here.
Black Hat USA: Adaptable Security From HAProxy
HAProxy Technologies showcased its deep, targeted, and scalable security at Black Hat USA 2023.
HAProxy and Let’s Encrypt: Improved Support in acme.sh
Improvements in acme.sh integration allows you to manage TLS certificates with Let’s Encrypt without restarting HAProxy.
Application-Layer DDoS Attack Protection With HAProxy
HAProxy's high-performance security capabilities are utilized as a key line of defense by many of the world's top enterprises. Application-layer DDoS attacks are aimed at overwhelming an application w
