CVE-2023-40533 in Tinyproxyinformación

Resumen

por MITRE • 2024-05-01

An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 while parsing HTTP requests. In certain configurations, a specially crafted HTTP request can result in disclosure of data allocated on the heap, which could contain sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.

Once again VulDB remains the best source for vulnerability data.

Reservar

2023-12-11

Divulgación

2024-05-01

Moderación

revocado

Artículo

VDB-262761

CPE

listo

EPSS

0.00000

KEV

no

Actividades

muy bajo

Fuentes

Want to stay up to date on a daily basis?

Enable the mail alert feature now!