Hi, Are you aware of https://nvd.nist.gov/vuln/detail/CVE-2021-40346 ? Haproxy 2.0 through 2.5 has a vulnerability that can be exploited to smuggle requests to backend systems.
If the CloudStack VR is using one of these versions, it should be patched everywhere ASAP. Regards, Greg