{
  "threat_severity" : "Important",
  "public_date" : "2025-10-03T00:00:00Z",
  "bugzilla" : {
    "description" : "haproxy: denial of service vulnerability in HAProxy mjson library",
    "id" : "2413003",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2413003"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-407",
  "details" : [ "Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.", "A flaw was found in haproxy. A stemming from an inefficient algorithmic complexity issue within its bundled mjson parsing library. This vulnerability is triggered when haproxy is configured to analyze JSON content, such as with the json_query or jwt_payload_query function" ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "release_date" : "2025-11-18T00:00:00Z",
    "advisory" : "RHSA-2025:21691",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10.1",
    "package" : "haproxy-0:3.0.5-4.el10_1.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10.0 Extended Update Support",
    "release_date" : "2025-11-18T00:00:00Z",
    "advisory" : "RHSA-2025:21692",
    "cpe" : "cpe:/o:redhat:enterprise_linux_eus:10.0",
    "package" : "haproxy-0:3.0.5-4.el10_0.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-11-18T00:00:00Z",
    "advisory" : "RHSA-2025:21693",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "haproxy-0:2.8.14-1.el9_7.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
    "release_date" : "2025-12-01T00:00:00Z",
    "advisory" : "RHSA-2025:22422",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.0",
    "package" : "haproxy-0:2.4.7-2.el9_0.3"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
    "release_date" : "2025-12-01T00:00:00Z",
    "advisory" : "RHSA-2025:22398",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.2",
    "package" : "haproxy-0:2.4.17-6.el9_2.3"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2025-12-01T00:00:00Z",
    "advisory" : "RHSA-2025:22399",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4",
    "package" : "haproxy-0:2.4.22-3.el9_4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.6 Extended Update Support",
    "release_date" : "2025-11-18T00:00:00Z",
    "advisory" : "RHSA-2025:21694",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.6",
    "package" : "haproxy-0:2.4.22-4.el9_6.1"
  }, {
    "product_name" : "Red Hat Ceph Storage 8",
    "release_date" : "2025-12-02T00:00:00Z",
    "advisory" : "RHSA-2025:22548",
    "cpe" : "cpe:/a:redhat:ceph_storage:8::el9",
    "package" : "rhceph/rhceph-haproxy-rhel9:8"
  }, {
    "product_name" : "Red Hat Hardened Images",
    "release_date" : "2026-04-17T00:00:00Z",
    "advisory" : "RHSA-2026:8729",
    "cpe" : "cpe:/a:redhat:hummingbird:1",
    "package" : "haproxy-main-3.0.19-1.hum1"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Ceph Storage 5",
    "fix_state" : "Affected",
    "package_name" : "haproxy",
    "cpe" : "cpe:/a:redhat:ceph_storage:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Affected",
    "package_name" : "haproxy",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "haproxy",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Not affected",
    "package_name" : "haproxy",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Affected",
    "package_name" : "openshift4/ose-haproxy-router",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Not affected",
    "package_name" : "openshift4/ose-haproxy-router-rhel9",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Affected",
    "package_name" : "openshift4/ose-hypershift-rhel8",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Affected",
    "package_name" : "openshift4/ose-hypershift-rhel9",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Affected",
    "package_name" : "openshift4/ose-tests",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Affected",
    "package_name" : "openshift4/ose-tests-rhel9",
    "cpe" : "cpe:/a:redhat:openshift:4"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-11230\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-11230" ],
  "name" : "CVE-2025-11230",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}