CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

pacparserfindproxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly privilege escalation, when the attacker controls the URL which may be realistic within enterprise security products...

6.1CVSS6.9AI score0.00064EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:38 a.m.•2 views

CVE-2019-25078

A vulnerability classified as problematic was found in pacparser up to 1.3.x. Affected by this vulnerability is the function pacparserfindproxy of the file src/pacparser.c. The manipulation of the argument url leads to buffer overflow. Attacking locally is a requirement. Upgrading to version 1.4....

7.8CVSS7.1AI score0.0019EPSS

Exploits1References1

Tenable Nessus•added 2025/03/05 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-37360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pacparserfindproxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly privilege escalation, when the attacker controls the URL which may be...

6.1CVSS6.2AI score0.00064EPSS

Exploits1References3

Tenable Nessus•added 2025/03/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2019-25078

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in pacparser up to 1.3.x. Affected by this vulnerability is the function pacparserfindproxy of the file...

7.8CVSS6.9AI score0.0019EPSS

Exploits1References3

OSV•added 2024/05/02 1:23 p.m.•0 views

CVE-2023-28798

An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may lead to arbitrary code execution...

9.8CVSS6AI score

Exploits0References1

CVE•added 2024/05/02 1:10 p.m.•43 views

CVE-2023-28798

CVE-2023-28798 affects Zscaler Client Connector on macOS, due to a heap-based out-of-bounds write in the pacparser library. The vulnerability could allow arbitrary code execution. Affected: Zscaler Client Connector (macOS); vulnerable component: pacparser; root cause: out-of-bounds write to heap....

9.8CVSS7.7AI score0.00218EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/05/02 1:10 p.m.•11 views

CVE-2023-28798 Out-of-bounds write to heap in pacparser

An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may lead to arbitrary code execution...

6.5CVSS7.8AI score0.00218EPSS

Exploits0References1

Cvelist•added 2024/05/02 1:10 p.m.•12 views

CVE-2023-28798 Out-of-bounds write to heap in pacparser

An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may lead to arbitrary code execution...

6.5CVSS7.2AI score0.00218EPSS

Exploits0References1

Positive Technologies•added 2024/05/02 12:0 a.m.•2 views

PT-2024-12177 · Zscaler · Zscaler Client Connector

Name of the Vulnerable Software and Affected Versions: Zscaler Client Connector affected versions not specified Description: An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may lead to arbitrary code execution. Recommendations: At the moment, there is no...

6.5CVSS7.6AI score0.00218EPSS

Exploits0References5

OSV•added 2023/06/30 6:15 p.m.•2 views

DEBIAN-CVE-2023-37360

6.1CVSS6.2AI score0.00064EPSS

Exploits1References1