Vulnerabilities

CVE-2022-40468

by Fred · 19/09/2022

Tinyproxy commit 84f203f and earlier does not process HTTP request lines in the process_request() function and is using uninitialized buffers. This vulnerability allows attackers to access sensitive information at system runtime.

Date published : 2022-09-19

https://github.com/tinyproxy/tinyproxy

https://github.com/tinyproxy/tinyproxy/blob/84f203fb1c4733608c7283bbe794005a469c4b00/src/reqs.c#L346

Similar

Tags: Cybersecurity Alert