Proxygen Security Vulnerabilities and Issues — Proxygen CVE List

Lucene search

Proxygen ProjectProxygen

5 matches found

CVE•added 2017/04/10 3:59 a.m.•46 views

CVE-2015-7263

The SPDY/2 codec in Facebook Proxygen before 2015-11-09 allows remote attackers to conduct hijacking attacks and bypass ACL checks via a crafted host value.

7.5CVSS7.4AI score0.00349EPSS

CVE•added 2017/04/10 3:59 a.m.•32 views

CVE-2015-7265

Facebook Proxygen before 2015-11-09 mismanages HTTPMessage.request state, which allows remote attackers to conduct hijacking attacks and bypass ACL checks.

7.5CVSS7.5AI score0.00349EPSS

CVE•added 2018/12/31 10:29 p.m.•32 views

CVE-2018-6347

An issue in the Proxygen handling of HTTP2 parsing of headers/trailers can lead to a denial-of-service attack. This affects Proxygen prior to v2018.12.31.00.

7.5CVSS7.4AI score0.00432EPSS

CVE•added 2018/12/31 10:29 p.m.•31 views

CVE-2018-6346

A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings (specifically a circular dependency). This affects Proxygen prior to v2018.12.31.00.

7.5CVSS7.4AI score0.00334EPSS

CVE•added 2017/04/10 3:59 a.m.•29 views

CVE-2015-7264

The SPDY/2 codec in Facebook Proxygen before 2015-11-09 truncates a certain field to two bytes, which allows hijacking and injection attacks.

9.8CVSS9.4AI score0.00486EPSS