CVE-2018-14505

Published: 22/07/2018 Updated: 18/09/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

mitmweb in mitmproxy v4.0.3 allows DNS Rebinding attacks, related to tools/web/app.py.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mitmproxy mitmproxy 4.0.3

Debian Bug report logs - #904293 mitmproxy: CVE-2018-14505 Package: src:mitmproxy; Maintainer for src:mitmproxy is Sebastien Delafond <seb@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 22 Jul 2018 19:30:02 UTC Severity: important Tags: fixed-upstream, security, upstream Found in versi ...

FEATURE: SmartFix for Python The feature provides the minimum fix version of a given vulnerable direct that solves the biggest amount of vulnerabilities on top of a Pull-Request DEPENDENCY lyrebird==0105 VULNERABLE TRANSITIVE DEPENDENCIES mitmproxy==403 cryptography==222 VULNERABILITIES mitmproxy==403 -> CVE-2018-14505 cryptography==222 -> CVE-2020-

CWE-20 https://github.com/mitmproxy/mitmproxy/pull/3243 https://github.com/mitmproxy/mitmproxy/issues/3234 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904293 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-14505

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect