CVE-2023-49606 a critical use-after-free vulnerability found in Tinyproxy’s HTTP Connection Headers parsing feature. This flaw can be exploited by utilizing a meticulously crafted HTTP header, triggering the reutilization of previously freed memory. Consequently, this misuse leads to memory corruption, posing a significant risk of remote code execution.
Get through updates and upcoming events, and more directly in your inbox