all InfoSec news
Widespread RCE compromise likely with critical TinyProxy bug
SC Magazine feed for Threats www.scmagazine.com
Fifty-seven percent of more than 90,000 internet-exposed hosts continue to run TinyProxy instances unpatched against the critical use-after-free vulnerability, tracked as CVE-2023-49606, which could be leveraged to facilitate remote code execution attacks via an unauthenticated HTTP request, reports The Hacker News.
attacks bug code code execution compromise continue critical cve exposed free hacker http internet patchconfiguration-management rce remote code remote code execution reports request run the hacker news threat intelligence tinyproxy unauthenticated unpatched use-after-free vulnerability vulnerability management