← Back

Proxygen

proxygen

Vendor: Proxygen Project • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-6347
1Proxygen Project
1Proxygen
May 6, 2025
Dec 31, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An issue in the Proxygen handling of HTTP2 parsing of headers/trailers can lead to a denial-of-service attack. This affects Proxygen prior to v2018.12.31.00.
CVE-2018-6346
1Proxygen Project
1Proxygen
May 6, 2025
Dec 31, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings (specifically a circular dependency). This affects Proxygen prior to v2018.12.31.00.
CVE-2015-7265
1Proxygen Project
1Proxygen
May 13, 2026
Apr 10, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Facebook Proxygen before 2015-11-09 mismanages HTTPMessage.request state, which allows remote attackers to conduct hijacking attacks and bypass ACL checks.
CVE-2015-7264
1Proxygen Project
1Proxygen
May 13, 2026
Apr 10, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The SPDY/2 codec in Facebook Proxygen before 2015-11-09 truncates a certain field to two bytes, which allows hijacking and injection attacks.
CVE-2015-7263
1Proxygen Project
1Proxygen
May 13, 2026
Apr 10, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The SPDY/2 codec in Facebook Proxygen before 2015-11-09 allows remote attackers to conduct hijacking attacks and bypass ACL checks via a crafted host value.