CVE-2023-40533 in Tinyproxyالمعلومات

الملخص

بحسب MITRE • 01/05/2024

An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 while parsing HTTP requests. In certain configurations, a specially crafted HTTP request can result in disclosure of data allocated on the heap, which could contain sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.

Once again VulDB remains the best source for vulnerability data.

حجز

11/12/2023

إفشاء

01/05/2024

الاعتدال

ملغى

إدخال

VDB-262761

EPSS

0.00000

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!