Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-957h-4a8b-67dy
Summary
Mitmweb API Authentication Bypass Using Proxy Server
In mitmweb 11.1.0 and below, a malicious client can use mitmweb's proxy server (bound to `*:8080` by default) to access mitmweb's internal API (bound to `127.0.0.1:8081` by default). In other words, while the client cannot access the API directly (good), they can access the API through the proxy (bad). An attacker may be able to escalate this [SSRF](https://en.wikipedia.org/wiki/Server-side_request_forgery)-style access to remote code execution.

The mitmproxy and mitmdump tools are unaffected. Only mitmweb is affected. The `block_global` option, which is enabled by default, blocks connections originating from publicly-routable IP addresses in the proxy. The attacker needs to be in the same local network.
Aliases
0
alias CVE-2025-23217
1
alias GHSA-wg33-5h85-7q5p
Fixed_packages
0
url pkg:deb/debian/mitmproxy@8.1.1-4?distro=sid
purl pkg:deb/debian/mitmproxy@8.1.1-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@8.1.1-4%3Fdistro=sid
1
url pkg:deb/debian/mitmproxy@8.1.1-4
purl pkg:deb/debian/mitmproxy@8.1.1-4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@8.1.1-4
2
url pkg:pypi/mitmproxy@11.1.2
purl pkg:pypi/mitmproxy@11.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-m2dr-awrx-nbbe
1
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@11.1.2
Affected_packages
0
url pkg:deb/debian/mitmproxy@6.0.2-1?distro=sid
purl pkg:deb/debian/mitmproxy@6.0.2-1?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@6.0.2-1%3Fdistro=sid
1
url pkg:deb/debian/mitmproxy@6.0.2-1
purl pkg:deb/debian/mitmproxy@6.0.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@6.0.2-1
2
url pkg:deb/debian/mitmproxy@8.1.1-2
purl pkg:deb/debian/mitmproxy@8.1.1-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@8.1.1-2
3
url pkg:deb/debian/mitmproxy@8.1.1-2?distro=sid
purl pkg:deb/debian/mitmproxy@8.1.1-2?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mitmproxy@8.1.1-2%3Fdistro=sid
4
url pkg:pypi/mitmproxy@0.8
purl pkg:pypi/mitmproxy@0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.8
5
url pkg:pypi/mitmproxy@0.8.1
purl pkg:pypi/mitmproxy@0.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.8.1
6
url pkg:pypi/mitmproxy@0.9
purl pkg:pypi/mitmproxy@0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.9
7
url pkg:pypi/mitmproxy@0.9.1
purl pkg:pypi/mitmproxy@0.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.9.1
8
url pkg:pypi/mitmproxy@0.9.2
purl pkg:pypi/mitmproxy@0.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.9.2
9
url pkg:pypi/mitmproxy@0.10
purl pkg:pypi/mitmproxy@0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.10
10
url pkg:pypi/mitmproxy@0.10.1
purl pkg:pypi/mitmproxy@0.10.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.10.1
11
url pkg:pypi/mitmproxy@0.11
purl pkg:pypi/mitmproxy@0.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.11
12
url pkg:pypi/mitmproxy@0.11.1
purl pkg:pypi/mitmproxy@0.11.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.11.1
13
url pkg:pypi/mitmproxy@0.11.2
purl pkg:pypi/mitmproxy@0.11.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.11.2
14
url pkg:pypi/mitmproxy@0.11.3
purl pkg:pypi/mitmproxy@0.11.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.11.3
15
url pkg:pypi/mitmproxy@0.12.0
purl pkg:pypi/mitmproxy@0.12.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.12.0
16
url pkg:pypi/mitmproxy@0.12.1
purl pkg:pypi/mitmproxy@0.12.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.12.1
17
url pkg:pypi/mitmproxy@0.13
purl pkg:pypi/mitmproxy@0.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.13
18
url pkg:pypi/mitmproxy@0.14.0
purl pkg:pypi/mitmproxy@0.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.14.0
19
url pkg:pypi/mitmproxy@0.15
purl pkg:pypi/mitmproxy@0.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.15
20
url pkg:pypi/mitmproxy@0.16
purl pkg:pypi/mitmproxy@0.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.16
21
url pkg:pypi/mitmproxy@0.17
purl pkg:pypi/mitmproxy@0.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.17
22
url pkg:pypi/mitmproxy@0.18.1
purl pkg:pypi/mitmproxy@0.18.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.18.1
23
url pkg:pypi/mitmproxy@0.18.2
purl pkg:pypi/mitmproxy@0.18.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.18.2
24
url pkg:pypi/mitmproxy@0.18.3
purl pkg:pypi/mitmproxy@0.18.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@0.18.3
25
url pkg:pypi/mitmproxy@1.0.0
purl pkg:pypi/mitmproxy@1.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@1.0.0
26
url pkg:pypi/mitmproxy@1.0.1
purl pkg:pypi/mitmproxy@1.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@1.0.1
27
url pkg:pypi/mitmproxy@1.0.2
purl pkg:pypi/mitmproxy@1.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@1.0.2
28
url pkg:pypi/mitmproxy@2.0.0
purl pkg:pypi/mitmproxy@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@2.0.0
29
url pkg:pypi/mitmproxy@2.0.1
purl pkg:pypi/mitmproxy@2.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@2.0.1
30
url pkg:pypi/mitmproxy@2.0.2
purl pkg:pypi/mitmproxy@2.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@2.0.2
31
url pkg:pypi/mitmproxy@3.0.0
purl pkg:pypi/mitmproxy@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@3.0.0
32
url pkg:pypi/mitmproxy@3.0.1
purl pkg:pypi/mitmproxy@3.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@3.0.1
33
url pkg:pypi/mitmproxy@3.0.2
purl pkg:pypi/mitmproxy@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@3.0.2
34
url pkg:pypi/mitmproxy@3.0.3
purl pkg:pypi/mitmproxy@3.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@3.0.3
35
url pkg:pypi/mitmproxy@3.0.4
purl pkg:pypi/mitmproxy@3.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@3.0.4
36
url pkg:pypi/mitmproxy@4.0.0
purl pkg:pypi/mitmproxy@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@4.0.0
37
url pkg:pypi/mitmproxy@4.0.1
purl pkg:pypi/mitmproxy@4.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@4.0.1
38
url pkg:pypi/mitmproxy@4.0.3
purl pkg:pypi/mitmproxy@4.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-pddc-5c8v-qqbs
5
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@4.0.3
39
url pkg:pypi/mitmproxy@4.0.4
purl pkg:pypi/mitmproxy@4.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@4.0.4
40
url pkg:pypi/mitmproxy@5.0.0
purl pkg:pypi/mitmproxy@5.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.0.0
41
url pkg:pypi/mitmproxy@5.0.1
purl pkg:pypi/mitmproxy@5.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.0.1
42
url pkg:pypi/mitmproxy@5.1.0
purl pkg:pypi/mitmproxy@5.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.1.0
43
url pkg:pypi/mitmproxy@5.1.1
purl pkg:pypi/mitmproxy@5.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.1.1
44
url pkg:pypi/mitmproxy@5.2
purl pkg:pypi/mitmproxy@5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.2
45
url pkg:pypi/mitmproxy@5.3.0
purl pkg:pypi/mitmproxy@5.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@5.3.0
46
url pkg:pypi/mitmproxy@6.0.0
purl pkg:pypi/mitmproxy@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@6.0.0
47
url pkg:pypi/mitmproxy@6.0.1
purl pkg:pypi/mitmproxy@6.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@6.0.1
48
url pkg:pypi/mitmproxy@6.0.2
purl pkg:pypi/mitmproxy@6.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@6.0.2
49
url pkg:pypi/mitmproxy@7.0.0
purl pkg:pypi/mitmproxy@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@7.0.0
50
url pkg:pypi/mitmproxy@7.0.1
purl pkg:pypi/mitmproxy@7.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@7.0.1
51
url pkg:pypi/mitmproxy@7.0.2
purl pkg:pypi/mitmproxy@7.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-f126-n8nd-jfgs
3
vulnerability VCID-m2dr-awrx-nbbe
4
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@7.0.2
52
url pkg:pypi/mitmproxy@7.0.3
purl pkg:pypi/mitmproxy@7.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-m2dr-awrx-nbbe
3
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@7.0.3
53
url pkg:pypi/mitmproxy@7.0.4
purl pkg:pypi/mitmproxy@7.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8xbk-3z3r-nkfh
1
vulnerability VCID-957h-4a8b-67dy
2
vulnerability VCID-m2dr-awrx-nbbe
3
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@7.0.4
54
url pkg:pypi/mitmproxy@8.0.0
purl pkg:pypi/mitmproxy@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@8.0.0
55
url pkg:pypi/mitmproxy@8.1.0
purl pkg:pypi/mitmproxy@8.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@8.1.0
56
url pkg:pypi/mitmproxy@8.1.1
purl pkg:pypi/mitmproxy@8.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@8.1.1
57
url pkg:pypi/mitmproxy@9.0.0
purl pkg:pypi/mitmproxy@9.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@9.0.0
58
url pkg:pypi/mitmproxy@9.0.1
purl pkg:pypi/mitmproxy@9.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@9.0.1
59
url pkg:pypi/mitmproxy@10.0.0
purl pkg:pypi/mitmproxy@10.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.0.0
60
url pkg:pypi/mitmproxy@10.1.0
purl pkg:pypi/mitmproxy@10.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.0
61
url pkg:pypi/mitmproxy@10.1.1
purl pkg:pypi/mitmproxy@10.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.1
62
url pkg:pypi/mitmproxy@10.1.2
purl pkg:pypi/mitmproxy@10.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.2
63
url pkg:pypi/mitmproxy@10.1.3
purl pkg:pypi/mitmproxy@10.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.3
64
url pkg:pypi/mitmproxy@10.1.4
purl pkg:pypi/mitmproxy@10.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.4
65
url pkg:pypi/mitmproxy@10.1.5
purl pkg:pypi/mitmproxy@10.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.5
66
url pkg:pypi/mitmproxy@10.1.6
purl pkg:pypi/mitmproxy@10.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.1.6
67
url pkg:pypi/mitmproxy@10.2.0
purl pkg:pypi/mitmproxy@10.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.2.0
68
url pkg:pypi/mitmproxy@10.2.1
purl pkg:pypi/mitmproxy@10.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.2.1
69
url pkg:pypi/mitmproxy@10.2.2
purl pkg:pypi/mitmproxy@10.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.2.2
70
url pkg:pypi/mitmproxy@10.2.3
purl pkg:pypi/mitmproxy@10.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.2.3
71
url pkg:pypi/mitmproxy@10.2.4
purl pkg:pypi/mitmproxy@10.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.2.4
72
url pkg:pypi/mitmproxy@10.3.0
purl pkg:pypi/mitmproxy@10.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.3.0
73
url pkg:pypi/mitmproxy@10.3.1
purl pkg:pypi/mitmproxy@10.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.3.1
74
url pkg:pypi/mitmproxy@10.4.0
purl pkg:pypi/mitmproxy@10.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.4.0
75
url pkg:pypi/mitmproxy@10.4.1
purl pkg:pypi/mitmproxy@10.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.4.1
76
url pkg:pypi/mitmproxy@10.4.2
purl pkg:pypi/mitmproxy@10.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@10.4.2
77
url pkg:pypi/mitmproxy@11.0.0
purl pkg:pypi/mitmproxy@11.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@11.0.0
78
url pkg:pypi/mitmproxy@11.0.1
purl pkg:pypi/mitmproxy@11.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@11.0.1
79
url pkg:pypi/mitmproxy@11.0.2
purl pkg:pypi/mitmproxy@11.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@11.0.2
80
url pkg:pypi/mitmproxy@11.1.0
purl pkg:pypi/mitmproxy@11.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-957h-4a8b-67dy
1
vulnerability VCID-m2dr-awrx-nbbe
2
vulnerability VCID-qgvt-wb92-9kbw
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mitmproxy@11.1.0
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-23217
reference_id
reference_type
scores
0
value 0.03579
scoring_system epss
scoring_elements 0.87975
published_at 2026-06-06T12:55:00Z
1
value 0.03579
scoring_system epss
scoring_elements 0.87971
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-23217
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23217
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23217
2
reference_url https://en.wikipedia.org/wiki/Server-side_request_forgery
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-06T19:15:53Z/
url https://en.wikipedia.org/wiki/Server-side_request_forgery
3
reference_url https://github.com/mitmproxy/mitmproxy
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mitmproxy/mitmproxy
4
reference_url https://github.com/mitmproxy/mitmproxy/blob/main/CHANGELOG.md
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mitmproxy/mitmproxy/blob/main/CHANGELOG.md
5
reference_url https://github.com/mitmproxy/mitmproxy/blob/main/CHANGELOG.md#06-february-2025-mitmproxy-1112
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-06T19:15:53Z/
url https://github.com/mitmproxy/mitmproxy/blob/main/CHANGELOG.md#06-february-2025-mitmproxy-1112
6
reference_url https://github.com/mitmproxy/mitmproxy/commit/fa89055e196d953f11fd241e36ee37858993486a
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mitmproxy/mitmproxy/commit/fa89055e196d953f11fd241e36ee37858993486a
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103701
reference_id 1103701
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103701
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-23217
reference_id CVE-2025-23217
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-23217
9
reference_url https://github.com/advisories/GHSA-wg33-5h85-7q5p
reference_id GHSA-wg33-5h85-7q5p
reference_type
scores
url https://github.com/advisories/GHSA-wg33-5h85-7q5p
10
reference_url https://github.com/mitmproxy/mitmproxy/security/advisories/GHSA-wg33-5h85-7q5p
reference_id GHSA-wg33-5h85-7q5p
reference_type
scores
0
value 8.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-06T19:15:53Z/
url https://github.com/mitmproxy/mitmproxy/security/advisories/GHSA-wg33-5h85-7q5p
Weaknesses
0
cwe_id 288
name Authentication Bypass Using an Alternate Path or Channel
description A product requires authentication, but the product has an alternate path or channel that does not require authentication.
1
cwe_id 441
name Unintended Proxy or Intermediary ('Confused Deputy')
description The product receives a request, message, or directive from an upstream component, but the product does not sufficiently preserve the original source of the request before forwarding the request to an external actor that is outside of the product's control sphere. This causes the product to appear to be the source of the request, leading it to act as a proxy or other intermediary between the upstream component and the external actor.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-957h-4a8b-67dy