CNNVD-202511-2877 Information

CNNVD ID

CNNVD-202511-2877

Related CVE

CVE-2025-63938

• CNNVD Published: 2025-11-26

Description (Chinese)

Tinyproxy是Tinyproxy开源的一个小型、高效的 HTTP/SSL 代理守护程序。 Tinyproxy 1.11.2及之前版本存在安全漏洞，该漏洞源于strip_return_port函数存在整数溢出。

Description (English)

Tinyproxy is a small, efficient HTTP/SSL proxy daemon for Tinyproxy open source. There is a security gap in Tinyproxy 1.11.2 and earlier versions, which stems from the integer spill of the stip return port function.

Hazard Level

High

Vulnerability Type

其他

Published

2025-11-26

Last Modified

2026-02-24

References

https://github.com/rayinaw/my-hub/blob/main/CVE-2025-63938/DISCLOSURE.md https://github.com/tinyproxy/tinyproxy/commit/3c0fde94981b025271ffa1788ae425257841bf5a https://github.com/tinyproxy/tinyproxy/issues/586