AI Score
Confidence
High
EPSS
Percentile
56.1%
Squid before 4.9, when certain web browsers are used, mishandles HTML in the host (aka hostname) parameter to cachemgr.cgi.
lists.opensuse.org/opensuse-security-announce/2020-05/msg00018.html
github.com/squid-cache/squid/pull/504
github.com/squid-cache/squid/pull/505
lists.debian.org/debian-lts-announce/2020/07/msg00009.html
usn.ubuntu.com/4356-1/
www.debian.org/security/2020/dsa-4732