| 0 |
| url |
VCID-1yz8-45ec-ukda |
| vulnerability_id |
VCID-1yz8-45ec-ukda |
| summary |
multiple issues |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44543 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.54336 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.5427 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.54327 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.54324 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.54325 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.00308 |
| scoring_system |
epss |
| scoring_elements |
0.54302 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44543 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-44543
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1yz8-45ec-ukda |
|
| 1 |
|
| 2 |
| url |
VCID-4zh8-nac7-vqcr |
| vulnerability_id |
VCID-4zh8-nac7-vqcr |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks when a response is buffered and the buffer limit is reached or Privoxy is running out of memory can lead to a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-35502 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70891 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70933 |
| published_at |
2026-06-09T12:55:00Z |
|
| 2 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.7094 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70923 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70909 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-35502 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-35502
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4zh8-nac7-vqcr |
|
| 3 |
| url |
VCID-66jj-2mug-uycn |
| vulnerability_id |
VCID-66jj-2mug-uycn |
| summary |
A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20274 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67854 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67807 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67847 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67844 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67843 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.00536 |
| scoring_system |
epss |
| scoring_elements |
0.67829 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20274 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20274
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-66jj-2mug-uycn |
|
| 4 |
| url |
VCID-abwp-7h2c-a3fr |
| vulnerability_id |
VCID-abwp-7h2c-a3fr |
| summary |
The filtering of URLs in JunkBuster before 2.0.2-r3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via heap corruption. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2005-1109 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87427 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87449 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87447 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87445 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87444 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.03286 |
| scoring_system |
epss |
| scoring_elements |
0.87457 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2005-1109 |
|
|
| fixed_packages |
|
| aliases |
CVE-2005-1109
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-abwp-7h2c-a3fr |
|
| 5 |
| url |
VCID-ax4t-3uyk-ybf8 |
| vulnerability_id |
VCID-ax4t-3uyk-ybf8 |
| summary |
multiple issues |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44541 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66584 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66536 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66576 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66572 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66569 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.00504 |
| scoring_system |
epss |
| scoring_elements |
0.66555 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44541 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-44541
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ax4t-3uyk-ybf8 |
|
| 6 |
| url |
VCID-bue5-6wyj-67gh |
| vulnerability_id |
VCID-bue5-6wyj-67gh |
| summary |
A memory leak vulnerability was found in Privoxy before 3.0.29 in the show-status CGI handler when no action files are configured. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20209 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78082 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78109 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78116 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78106 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78095 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.01071 |
| scoring_system |
epss |
| scoring_elements |
0.78113 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20209 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20209
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bue5-6wyj-67gh |
|
| 7 |
| url |
VCID-cc6e-vgc6-bkab |
| vulnerability_id |
VCID-cc6e-vgc6-bkab |
| summary |
A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20276 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85798 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85774 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85796 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85793 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85794 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85779 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20276 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20276
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cc6e-vgc6-bkab |
|
| 8 |
| url |
VCID-gzxh-w4mn-k7dz |
| vulnerability_id |
VCID-gzxh-w4mn-k7dz |
| summary |
The ij_untrusted_url function in JunkBuster 2.0.2-r2, with single-threaded mode enabled, allows remote attackers to overwrite the referrer field via a crafted HTTP request. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2005-1108 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77252 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77283 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77292 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77281 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77272 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00993 |
| scoring_system |
epss |
| scoring_elements |
0.77293 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2005-1108 |
|
|
| fixed_packages |
|
| aliases |
CVE-2005-1108
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gzxh-w4mn-k7dz |
|
| 9 |
| url |
VCID-j95h-cnan-1ya5 |
| vulnerability_id |
VCID-j95h-cnan-1ya5 |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leak in the show-status CGI handler when no filter files are configured can lead to a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20210 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72329 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72371 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72377 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72357 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72342 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72367 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20210 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20210
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j95h-cnan-1ya5 |
|
| 10 |
| url |
VCID-jk1u-qh29-x3ch |
| vulnerability_id |
VCID-jk1u-qh29-x3ch |
| summary |
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20216 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79966 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79935 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79961 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79971 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79962 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.01282 |
| scoring_system |
epss |
| scoring_elements |
0.79951 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20216 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20216
|
| risk_score |
1.4 |
| exploitability |
0.5 |
| weighted_severity |
2.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jk1u-qh29-x3ch |
|
| 11 |
| url |
VCID-kvr8-1vgx-kydf |
| vulnerability_id |
VCID-kvr8-1vgx-kydf |
| summary |
Multiple unspecified vulnerabilities in pcrs.c in Privoxy before 3.0.23 allow remote attackers to cause a denial of service (segmentation fault or memory consumption) via unspecified vectors. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1381 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83544 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83569 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83571 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83567 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83559 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83573 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1381 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-1381
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kvr8-1vgx-kydf |
|
| 12 |
| url |
VCID-mxbn-pmq5-7kf3 |
| vulnerability_id |
VCID-mxbn-pmq5-7kf3 |
| summary |
Multiple use-after-free vulnerabilities in Privoxy before 3.0.22 allow remote attackers to have unspecified impact via vectors related to (1) the unmap function in list.c or (2) "two additional unconfirmed use-after-free complaints made by Coverity scan." NOTE: some of these details are obtained from third party information. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1031 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.7147 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.71514 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.71521 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.71497 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.71481 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00659 |
| scoring_system |
epss |
| scoring_elements |
0.71504 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1031 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-1031
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mxbn-pmq5-7kf3 |
|
| 13 |
| url |
VCID-npvs-wy8d-mqey |
| vulnerability_id |
VCID-npvs-wy8d-mqey |
| summary |
Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 (aka Proxy Authentication Required) HTTP status code. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2503 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03483 |
| scoring_system |
epss |
| scoring_elements |
0.8779 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.03483 |
| scoring_system |
epss |
| scoring_elements |
0.87812 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.03483 |
| scoring_system |
epss |
| scoring_elements |
0.87813 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.03483 |
| scoring_system |
epss |
| scoring_elements |
0.87814 |
| published_at |
2026-06-08T12:55:00Z |
|
| 4 |
| value |
0.03483 |
| scoring_system |
epss |
| scoring_elements |
0.87827 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2503 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
|
| aliases |
CVE-2013-2503
|
| risk_score |
5.8 |
| exploitability |
2.0 |
| weighted_severity |
2.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-npvs-wy8d-mqey |
|
| 14 |
| url |
VCID-pk22-1nr6-cyap |
| vulnerability_id |
VCID-pk22-1nr6-cyap |
| summary |
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system availability. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20217 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.59713 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.5966 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.5971 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.59704 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.59705 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.00378 |
| scoring_system |
epss |
| scoring_elements |
0.59685 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20217 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20217
|
| risk_score |
1.4 |
| exploitability |
0.5 |
| weighted_severity |
2.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pk22-1nr6-cyap |
|
| 15 |
| url |
VCID-qb2v-vd58-pqee |
| vulnerability_id |
VCID-qb2v-vd58-pqee |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leak when client tags are active can cause a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20211 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72329 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72371 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72377 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72357 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72342 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72367 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20211 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20211
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qb2v-vd58-pqee |
|
| 16 |
| url |
VCID-qpky-ctsc-4ug5 |
| vulnerability_id |
VCID-qpky-ctsc-4ug5 |
| summary |
multiple issues |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44542 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70803 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70753 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70795 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70796 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70785 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.00633 |
| scoring_system |
epss |
| scoring_elements |
0.70773 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44542 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-44542
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qpky-ctsc-4ug5 |
|
| 17 |
| url |
VCID-qyq6-hnre-j7aw |
| vulnerability_id |
VCID-qyq6-hnre-j7aw |
| summary |
parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to an HTTP time header. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1382 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83544 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83569 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83571 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83567 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83559 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.01894 |
| scoring_system |
epss |
| scoring_elements |
0.83573 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1382 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-1382
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qyq6-hnre-j7aw |
|
| 18 |
| url |
VCID-r1zd-psw3-gkax |
| vulnerability_id |
VCID-r1zd-psw3-gkax |
| summary |
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (abort) via a crafted chunk-encoded body. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1380 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75504 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75533 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75537 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75527 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75514 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75539 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1380 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-1380
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r1zd-psw3-gkax |
|
| 19 |
| url |
VCID-r2af-jcj9-mqev |
| vulnerability_id |
VCID-r2af-jcj9-mqev |
| summary |
Memory leak in the rfc2553_connect_to function in jbsocket.c in Privoxy before 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests that are rejected because the socket limit is reached. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1030 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.67783 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.67823 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.67829 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.67819 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.67804 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00535 |
| scoring_system |
epss |
| scoring_elements |
0.6782 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1030 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-1030
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r2af-jcj9-mqev |
|
| 20 |
| url |
VCID-r7sf-bt5r-tqa5 |
| vulnerability_id |
VCID-r7sf-bt5r-tqa5 |
| summary |
A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20275 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85798 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85774 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85796 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85793 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85794 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85779 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20275 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20275
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r7sf-bt5r-tqa5 |
|
| 21 |
| url |
VCID-srtq-3ajb-5qdz |
| vulnerability_id |
VCID-srtq-3ajb-5qdz |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leak if multiple filters are executed and the last one is skipped due to a pcre error leading to a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20212 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72329 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72371 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72377 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72357 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72342 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72367 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20212 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20212
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-srtq-3ajb-5qdz |
|
| 22 |
| url |
VCID-uevs-pb1b-tfdt |
| vulnerability_id |
VCID-uevs-pb1b-tfdt |
| summary |
The remove_chunked_transfer_coding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via crafted chunk-encoded content. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1982 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.85254 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.8525 |
| published_at |
2026-06-09T12:55:00Z |
|
| 2 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.85249 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.85224 |
| published_at |
2026-06-04T12:55:00Z |
|
| 4 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.85248 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.02362 |
| scoring_system |
epss |
| scoring_elements |
0.85237 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1982 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2016-1982
|
| risk_score |
1.1 |
| exploitability |
0.5 |
| weighted_severity |
2.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uevs-pb1b-tfdt |
|
| 23 |
| url |
VCID-uqp3-rq3h-1khv |
| vulnerability_id |
VCID-uqp3-rq3h-1khv |
| summary |
The client_host function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via an empty HTTP Host header. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1983 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83223 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83224 |
| published_at |
2026-06-09T12:55:00Z |
|
| 2 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83222 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83196 |
| published_at |
2026-06-04T12:55:00Z |
|
| 4 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83219 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.01815 |
| scoring_system |
epss |
| scoring_elements |
0.83211 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1983 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2016-1983
|
| risk_score |
1.1 |
| exploitability |
0.5 |
| weighted_severity |
2.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uqp3-rq3h-1khv |
|
| 24 |
| url |
VCID-vtug-2hhh-9qaj |
| vulnerability_id |
VCID-vtug-2hhh-9qaj |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destination from the Host header and a memory allocation failed. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20213 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.74461 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.74493 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.74499 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.74487 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.7447 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00803 |
| scoring_system |
epss |
| scoring_elements |
0.74496 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20213 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20213
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vtug-2hhh-9qaj |
|
| 25 |
| url |
VCID-wgks-1mt5-4kh7 |
| vulnerability_id |
VCID-wgks-1mt5-4kh7 |
| summary |
A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20273 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86419 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86395 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86418 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86416 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86415 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.02806 |
| scoring_system |
epss |
| scoring_elements |
0.86402 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20273 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20273
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wgks-1mt5-4kh7 |
|
| 26 |
| url |
VCID-wvp8-6pfj-rkdd |
| vulnerability_id |
VCID-wvp8-6pfj-rkdd |
| summary |
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20272 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85798 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85774 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85796 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85793 |
| published_at |
2026-06-09T12:55:00Z |
|
| 4 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85794 |
| published_at |
2026-06-07T12:55:00Z |
|
| 5 |
| value |
0.02553 |
| scoring_system |
epss |
| scoring_elements |
0.85779 |
| published_at |
2026-06-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20272 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20272
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wvp8-6pfj-rkdd |
|
| 27 |
| url |
VCID-xpb3-hwac-kuf1 |
| vulnerability_id |
VCID-xpb3-hwac-kuf1 |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the show-status CGI handler when memory allocations fail can lead to a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20215 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72329 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72371 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72377 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72357 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72342 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72367 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20215 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20215
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xpb3-hwac-kuf1 |
|
| 28 |
| url |
VCID-yydj-c83s-a3bc |
| vulnerability_id |
VCID-yydj-c83s-a3bc |
| summary |
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the client-tags CGI handler when client tags are configured and memory allocations fail can lead to a system crash. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20214 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72329 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72371 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72377 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72357 |
| published_at |
2026-06-07T12:55:00Z |
|
| 4 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72342 |
| published_at |
2026-06-08T12:55:00Z |
|
| 5 |
| value |
0.00697 |
| scoring_system |
epss |
| scoring_elements |
0.72367 |
| published_at |
2026-06-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20214 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-20214
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yydj-c83s-a3bc |
|