CVE-2019-11921

2019-07-2521:15:11

Google

osv.dev

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.9%

JSON

An out of bounds write is possible via a specially crafted packet in certain configurations of Proxygen due to improper handling of Base64 when parsing malformed binary content in Structured HTTP Headers. This issue affects versions of proxygen prior to v2019.07.22.00.

CPENameOperatorVersion
proxygeneq2019.05.13.00
proxygeneq2018.08.13.00
proxygeneq2017.05.29.00
proxygeneq2017.08.14.00
proxygeneq2018.08.27.00
proxygeneq2017.08.28.00
proxygeneq2018.04.23.00
proxygeneq2017.05.01.00
proxygeneq2018.07.23.00
proxygeneq0.25.0

Name	Operator	Version
proxygen	eq	2019.05.13.00
proxygen	eq	2018.08.13.00
proxygen	eq	2017.05.29.00
proxygen	eq	2017.08.14.00
proxygen	eq	2018.08.27.00
proxygen	eq	2017.08.28.00
proxygen	eq	2018.04.23.00
proxygen	eq	2017.05.01.00
proxygen	eq	2018.07.23.00
proxygen	eq	0.25.0