Tinyproxy_project Tinyproxy
2 CVEs affecting Tinyproxy_project Tinyproxy. Latest disclosed: 2026-04-07. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-31842 | High | 7.5 | 2026-04-07 | Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs… |
CVE-2017-11747 | Medium | 5.5 | 2017-07-30 | main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local user… |