VYPR
Vendor

Charles

Products
2
CVEs
2
Across products
2
Status
Private

Products

2

Recent CVEs

2
  • CVE-2018-19244HigNov 13, 2018
    risk 0.56cvss 8.6epss 0.02

    An XML External Entity (XXE) vulnerability exists in the Charles 4.2.7 import/export setup option. If a user imports a "Charles Settings.xml" file from an attacker, an intranet network may be accessed and information may be leaked.

  • CVE-2017-15358HigAug 3, 2018
    risk 0.49cvss 7.0epss 0.01

    Race condition in the Charles Proxy Settings suid binary in Charles Proxy before 4.2.1 allows local users to gain privileges via vectors involving the --self-repair option.