← Back

CVE-2025-67485

nvd nist
Published: Dec 10, 2025Modified: Mar 9, 2026

JSON object

Loading...
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability: 3.9 / Impact: 1.4
Source: security-advisories@github.com (Secondary)

Description

mad-proxy is a Python-based HTTP/HTTPS proxy server for detection and blocking of malicious web activity using custom security policies. Versions 0.3 and below allow attackers to bypass HTTP/HTTPS traffic interception rules, potentially exposing sensitive traffic. This issue does not have a fix at the time of publication.

Affected (1)

Products: Machphy: Mad Proxy
Machphy
1 product
Mad Proxy
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Mad Proxy
Up to 0.3

Related CWEs

CWE-693
Protection Mechanism Failure
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

References (1)

Source: security-advisories@github.com
Vendor Advisory

Timeline

No history available yet.