mitmweb in mitmproxy v4.0.3 allows DNS Rebinding attacks, related to tools/web/app.py.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HMitmproxy
APPMitmproxy4.0.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2022-24766CRITICAL9.8ten sam produkt
mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.4 and below, a malicious cli...
CVE-2021-39214HIGH8.1ten sam produkt
mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.2 and below, a malicious cli...
CVE-2026-40606MEDIUM4.8ten sam produkt
mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers...