CVE-2026-33077 | Roxy-WI up to 8.2.6.3 haproxy_section_save oldconfig path traversal (GHSA-c799-4ww6-q93w)

A vulnerability marked as critical has been reported in Roxy-WI up to 8.2.6.3. This affects the function haproxy_section_save. This manipulation of the argument oldconfig causes path traversal.

This vulnerability is handled as CVE-2026-33077. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More