4 matches found
CVE-2026-40606
mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers and mitmweb is a web-based interface for mitmproxy. In mitmproxy 12.2.1 and below, the builtin LDAP proxy authentication does not correctly sanitize the username when querying the LDAP...
bagbag (>=0.72.2 <=0.75.43), chameli (>=0.1.9 <=0.1.16) +25 more potentially affected by CVE-2026-40606 via mitmproxy (>=10.1.5 <=12.2.1)
mitmproxy PYPI version =10.1.5, =0.72.2, =0.1.9, =0.1.0, =0.0.0, =4.0.0, =0.34.0, =0.14.1, =4.0.0, =0.11.0, =3.7.6, =0.2.0, =1.0.0, =0.5.0, =0.7.0 and more Source cves: CVE-2026-40606 Source advisory: OSV:PYSEC-2026-92...
UBUNTU-CVE-2026-40606
mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers and mitmweb is a web-based interface for mitmproxy. In mitmproxy 12.2.1 and below, the builtin LDAP proxy authentication does not correctly sanitize the username when querying the LDAP...
bagbag (>=0.72.2 <=0.75.43), chameli (>=0.1.9 <=0.1.16) +25 more potentially affected by CVE-2026-40606 via mitmproxy (>=10.1.5 <=12.2.1)
mitmproxy PYPI version =10.1.5, =0.72.2, =0.1.9, =0.1.0, =0.0.0, =4.0.0, =0.34.0, =0.14.1, =4.0.0, =0.11.0, =3.7.6, =0.2.0, =1.0.0, =0.5.0, =0.7.0 and more Source cves: CVE-2026-40606 Source advisory: OSV:GHSA-527G-3W9M-29HV...