Vulnerability Details CVE-2021-32826
Proxyee-Down is open source proxy software. An attacker being able to provide an extension script (eg: through a MiTM attack or by hosting a malicious extension) may be able to run arbitrary commands on the system running Proxyee-Down. For more details including a PoC see the referenced GHSL-2021-053. As of the writing of this CVE there is currently no patched version.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.5%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 9.3
References
Products affected by CVE-2021-32826
-
cpe:2.3:a:proxyee-down_project:proxyee-down:-