CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Tenable Nessus•added 2026/04/09 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31842

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs....

8.7CVSS5.8AI score0.00143EPSS

Exploits1References3

Tenable Nessus•added 2025/12/04 12:0 a.m.•1 views

Fedora 43 : tinyproxy (2025-72fbf180c7)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-72fbf180c7 advisory. Add upstream patch to fix CVE-2025-63938. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

6.5CVSS5.4AI score0.00058EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2002-0839

Malware in sbrugna...

7.5CVSS6.2AI score0.02116EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2012-3460

Malware in sbrugna...

5CVSS5.3AI score0.05172EPSS

Exploits0References13

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2022-43746

Malicious code in bioql PyPI...

7.5CVSS5.7AI score0.00178EPSS

Exploits1References6

RedhatCVE•added 2025/05/22 11:39 p.m.•4 views

CVE-2022-40468

Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in processrequest function...

7.5CVSS6.8AI score0.00178EPSS

Exploits1References1

Ubuntu•added 2025/01/08 6:44 a.m.•13 views

USN-7190-1: Tinyproxy vulnerability

It was discovered that Tinyproxy did not properly manage memory during the parsing of HTTP connection headers. An attacker could use this issue to cause a DoS or possibly execute arbitrary code...

9.8CVSS6.3AI score0.78967EPSS

Exploits2

Tenable Nessus•added 2025/01/06 12:0 a.m.•7 views

Ubuntu 14.04 LTS : Tinyproxy vulnerability (USN-7140-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7140-2 advisory. USN-7140-1 fixed CVE-2022-40468 in tinyproxy. This update provides the corresponding update for Ubuntu 14.04 LTS. Tenable has extracted the preceding description...

7.5CVSS6.1AI score0.00178EPSS

Exploits1References2

Ubuntu•added 2024/12/09 4:23 a.m.•18 views

USN-7140-1: Tinyproxy vulnerability

It was discovered that Tinyproxy did not properly manage memory under certain circumstances. An attacker could possibly use this issue to leak left-over heap data if custom error page templates containing special non-standard variables are used...

7.5CVSS6.2AI score0.00178EPSS

Exploits1

Tenable Nessus•added 2024/12/09 12:0 a.m.•7 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : Tinyproxy vulnerability (USN-7140-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7140-1 advisory. It was discovered that Tinyproxy did not properly manage memory under certain circumstances. An attacker could possibly use th...

7.5CVSS6.2AI score0.00178EPSS

Exploits1References2

GithubExploit•added 2024/05/07 10:3 a.m.•708 views

Exploit for Use After Free in Tinyproxy_Project Tinyproxy

!Profile Visitorshttps://komarev.com/ghpvc/?username=d0rb&la...

9.8CVSS6.7AI score0.78967EPSS

Exploits2

Tenable Nessus•added 2023/10/16 12:0 a.m.•19 views

Ubuntu 16.04 ESM / 18.04 ESM : Tinyproxy vulnerability (USN-4808-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4808-1 advisory. It was discovered that Tinyproxy created its pid file with insecure permissions. An attacker could use the vulnerability to cause arbitrary processes ...

5.5CVSS5.9AI score0.00034EPSS

Exploits0References2

OSV•added 2012/10/09 11:55 p.m.•2 views

CVE-2012-3505

Tinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of service CPU and memory consumption via 1 a large number of headers or 2 a large number of forged headers that trigger hash collisions predictably. bucket...

6.5AI score

Exploits0References10

UbuntuCve•added 2012/10/09 11:55 p.m.•21 views

CVE-2012-3505

5CVSS6.1AI score0.05172EPSS

Exploits0References1

OSV•added 2011/04/29 10:55 p.m.•4 views

CVE-2011-1499

acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server...

6.3AI score

Exploits0References13

Debian CVE•added 2003/04/02 5:0 a.m.•18 views

CVE-2002-0847

tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice double-free...

7.5CVSS7.5AI score0.02116EPSS

Exploits0

Debian•added 2002/08/07 5:54 p.m.•16 views

[SECURITY] [DSA 145-1] New tinyproxy packages fix security vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 145-1 [email protected] http://www.debian.org/security/ Martin Schulze August 7th, 2002 - -------------------------------------------------------------------------- Package : tinyproxy...

7AI score

Exploits0

Tenable Nessus•added 2001/01/19 12:0 a.m.•105 views

tinyProxy Long Connect Request Overflow

It was possible to make the remote service crash by sending it the command : connect AAA...AAAA:// It may be possible for an attacker to execute arbitrary code on this host thanks to this flaw. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10596; scriptversion "1.26"...

10CVSS6AI score0.09555EPSS

Exploits1References1