Known Vulnerabilities for products from Privoxy
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Privoxy".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-20276 | A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to... | 7.5 - HIGH | 2021-03-09 | 2022-08-05 |
| CVE-2021-20275 | A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to deni... | 7.5 - HIGH | 2021-03-09 | 2022-08-05 |
| CVE-2021-20274 | A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves. | 7.5 - HIGH | 2021-03-09 | 2021-12-14 |
| CVE-2021-20273 | A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off. | 7.5 - HIGH | 2021-03-09 | 2021-12-08 |
| CVE-2021-20272 | A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to serv... | 7.5 - HIGH | 2021-03-09 | 2021-12-07 |
| CVE-2021-20217 | A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to de... | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20216 | A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may le... | 7.5 - HIGH | 2021-03-25 | 2022-08-05 |
| CVE-2021-20215 | A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the show-status CGI handler when memory allocations fa... | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20214 | A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the client-tags CGI handler when client tags are confi... | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20213 | A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-i... | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20212 | A flaw was found in Privoxy in versions before 3.0.29. Memory leak if multiple filters are executed and the last one is skipp... | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20211 | A flaw was found in Privoxy in versions before 3.0.29. Memory leak when client tags are active can cause a system crash. | 7.5 - HIGH | 2021-03-25 | 2021-12-14 |
| CVE-2021-20210 | A flaw was found in Privoxy in versions before 3.0.29. Memory leak in the show-status CGI handler when no filter files are co... | 7.5 - HIGH | 2021-03-25 | 2021-12-10 |
| CVE-2021-20209 | A memory leak vulnerability was found in Privoxy before 3.0.29 in the show-status CGI handler when no action files are config... | 7.5 - HIGH | 2021-05-25 | 2023-11-07 |
| CVE-2020-35502 | A flaw was found in Privoxy in versions before 3.0.29. Memory leaks when a response is buffered and the buffer limit is reach... | 7.5 - HIGH | 2021-03-25 | 2021-12-10 |
| CVE-2019-3699 | UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local ... | 7.8 - HIGH | 2020-01-24 | 2021-09-14 |
| CVE-2016-1983 | The client_host function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid ... | 7.5 - HIGH | 2016-01-27 | 2016-12-06 |
| CVE-2016-1982 | The remove_chunked_transfer_coding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial o... | 7.5 - HIGH | 2016-01-27 | 2016-12-06 |
| CVE-2015-1382 | parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (invalid read and crash) via vectors ... | 5 - MEDIUM | 2015-02-03 | 2018-10-30 |
| CVE-2015-1381 | Multiple unspecified vulnerabilities in pcrs.c in Privoxy before 3.0.23 allow remote attackers to cause a denial of service (... | 5 - MEDIUM | 2015-02-03 | 2018-10-30 |
Known software with vulnerabilities from Privoxy
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Privoxy | Privoxy | 2.9.20 |