Linux Distros Unpatched Vulnerability : CVE-2025-54574

🗓️ 18 Aug 2025 00:00:00Reported by TenableType

Squid <=6.3 heap overflow risks remote code execution; fix 6.4; disable URN access; CVE-2025-54574

Reporter	Title	Published	Views	Family All 96
Tenable Nessus	Amazon Linux 2023 : squid (ALAS2023-2024-578)	3 Apr 202400:00	–	nessus
Tenable Nessus	Debian dla-4312 : squid - security update	27 Sep 202500:00	–	nessus
Tenable Nessus	Debian dsa-5982 : squid - security update	21 Aug 202500:00	–	nessus
Tenable Nessus	Fedora 41 : squid (2025-252c9276b3)	27 Oct 202500:00	–	nessus
Tenable Nessus	Fedora 42 : squid (2025-f0452df4e2)	26 Oct 202500:00	–	nessus
Tenable Nessus	Oracle Linux 7 : squid (ELSA-2025-14414)	30 Sep 202500:00	–	nessus
Tenable Nessus	Oracle Linux 7 : squid (ELSA-2025-19167)	19 Nov 202500:00	–	nessus
Tenable Nessus	Oracle Linux 7 : squid (ELSA-2026-8880)	20 May 202600:00	–	nessus
Tenable Nessus	RHEL 9 : squid (RHSA-2023:7465)	22 Nov 202300:00	–	nessus
Tenable Nessus	RHEL 8 : squid:4 (RHSA-2023:7668)	6 Dec 202300:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2025-54574
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(251576);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/09/29");

  script_cve_id("CVE-2025-54574");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2025-54574");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer
    overflow and possible remote code execution attack when processing URN due to incorrect buffer management.
    This has been fixed in version 6.4. To work around this issue, disable URN access permissions.
    (CVE-2025-54574)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2025-54574");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-54574");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/08/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/18");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:squid3");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-16.04", "Host/OS/Ubuntu Linux-18.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-16.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "16.04",
        "pkgs": [
          {"reference": "squid"},
          {"reference": "squid-cgi"},
          {"reference": "squid-common"},
          {"reference": "squid-dbg"},
          {"reference": "squid-purge"},
          {"reference": "squid3"},
          {"reference": "squidclient"}
        ]
      }
    ]
  },
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "squid"},
          {"reference": "squid-cgi"},
          {"reference": "squid-common"},
          {"reference": "squid-dbg"},
          {"reference": "squid-purge"},
          {"reference": "squid3"},
          {"reference": "squidclient"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

29 Sep 2025 00:00Current

8.8High risk

Vulners AI Score8.8

CVSS 3.19.3 - 9.8

EPSS0.0932

SSVC