CPE-E62B4EBD-41A5-46C6-BC2F-DF8EC8906101 Detail

CPE Details

Privoxy 3.0.23

Vendor

privoxy

Product

privoxy

Version

3.0.23

Created

2016-02-01
00h13 +00:00

Modified

2016-02-01
00h13 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:privoxy:privoxy:3.0.23:::::::*

Informations

Vendor

privoxy

Product

privoxy

Version

3.0.23

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-44543	2021-12-23 18h48 +00:00	An XSS vulnerability was found in Privoxy which was fixed in cgi_error_no_template() by encode the template name when Privoxy is configured to servce the user-manual itself.	6.1	Medium
CVE-2021-44542	2021-12-23 18h48 +00:00	A memory leak vulnerability was found in Privoxy when handling errors.	7.5	High
CVE-2021-44540	2021-12-23 18h48 +00:00	A vulnerability was found in Privoxy which was fixed in get_url_spec_param() by freeing memory of compiled pattern spec before bailing.	7.5	High
CVE-2021-44541	2021-12-23 18h48 +00:00	A vulnerability was found in Privoxy which was fixed in process_encrypted_request_headers() by freeing header memory when failing to get the request destination.	7.5	High
CVE-2021-20209	2021-05-25 17h34 +00:00	A memory leak vulnerability was found in Privoxy before 3.0.29 in the show-status CGI handler when no action files are configured.	7.5	High
CVE-2021-20217	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system availability.	7.5	High
CVE-2021-20216	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability.	7.5	High
CVE-2021-20215	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the show-status CGI handler when memory allocations fail can lead to a system crash.	7.5	High
CVE-2021-20214	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the client-tags CGI handler when client tags are configured and memory allocations fail can lead to a system crash.	7.5	High
CVE-2021-20213	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destination from the Host header and a memory allocation failed.	7.5	High
CVE-2021-20212	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leak if multiple filters are executed and the last one is skipped due to a pcre error leading to a system crash.	7.5	High
CVE-2021-20211	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leak when client tags are active can cause a system crash.	7.5	High
CVE-2021-20210	2021-03-25 17h57 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leak in the show-status CGI handler when no filter files are configured can lead to a system crash.	7.5	High
CVE-2020-35502	2021-03-25 17h56 +00:00	A flaw was found in Privoxy in versions before 3.0.29. Memory leaks when a response is buffered and the buffer limit is reached or Privoxy is running out of memory can lead to a system crash.	7.5	High
CVE-2021-20276	2021-03-09 12h12 +00:00	A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service.	7.5	High
CVE-2021-20275	2021-03-09 12h12 +00:00	A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service.	7.5	High
CVE-2021-20274	2021-03-09 12h11 +00:00	A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves.	7.5	High
CVE-2021-20273	2021-03-09 12h11 +00:00	A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off.	7.5	High
CVE-2021-20272	2021-03-09 12h10 +00:00	A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash.	7.5	High
CVE-2019-3699	2020-01-24 12h25 +00:00	UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local attackers to escalate from user privoxy to root. This issue affects: openSUSE Leap 15.1 privoxy version 3.0.28-lp151.1.1 and prior versions. openSUSE Factory privoxy version 3.0.28-2.1 and prior versions.	7.8	High
CVE-2016-1982	2016-01-27 19h00 +00:00	The remove_chunked_transfer_coding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via crafted chunk-encoded content.	7.5	High
CVE-2016-1983	2016-01-27 19h00 +00:00	The client_host function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via an empty HTTP Host header.	7.5	High

Privoxy 3.0.23

CPE Details

CPE Name: cpe:2.3:a:privoxy:privoxy:3.0.23:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:privoxy:privoxy:3.0.23:::::::*