mitmproxy
PyPI5 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting mitmproxypage 1 of 1
- CVE-2018-14505HIGHCVSS 8.8EG 8.8✓ Fixed in 4.0.42018-07-22
vulnerable: 0.10 ... 4.0.3 (35 versions)
mitmweb in mitmproxy v4.0.3 allows DNS Rebinding attacks, related to tools/web/app.py.
- CVE-2021-39214HIGHCVSS 8.1EG 8.1✓ Fixed in 7.0.32021-09-16
vulnerable: 0.10 ... 7.0.2 (48 versions)
mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.2 and below, a malicious client or server is able to perform HTTP request smuggling attacks through mitmproxy. This means that a malicious client/server coul…
- CVE-2022-24766CRITICALCVSS 9.8EG 9.8✓ Fixed in 8.0.02022-03-21
vulnerable: 0.10 ... 7.0.4 (50 versions)
mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.4 and below, a malicious client or server is able to perform HTTP request smuggling attacks through mitmproxy. This means that a malicious client/server coul…
- CVE-2025-23217HIGHCVSS 8.2EG 0.0✓ Fixed in 11.1.22025-02-06
vulnerable: 0.10 ... 9.0.1 (77 versions)
mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers and mitmweb is a web-based interface for mitmproxy. In mitmweb 11.1.1 and below, a malicious client can use mitmweb's proxy serv…
- CVE-2026-40606MEDIUMCVSS 4.8EG 4.8✓ Fixed in 12.2.22026-04-21
vulnerable: 0.10 ... 9.0.1 (86 versions)
mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers and mitmweb is a web-based interface for mitmproxy. In mitmproxy 12.2.1 and below, the builtin LDAP proxy authentication does no…
Check whether mitmproxy is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for mitmproxy CVEs against the assets you own.
Start Free Scan →