Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2019-18860

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Squid before 4.9, when certain web browsers are used, mishandles HTML in the host aka hostname parameter to cachemgr.cgi. CVE-2019-18860 Note that Nessus relies...

6.1CVSS6.7AI score0.055EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/26 12:0 a.m.39 views

Amazon Linux 2 : squid (ALAS-2023-2318)

The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2318 advisory. An issue was discovered in Squid through 4.7. When handling requests from users, Squid checks its rules to see if the...

9.8CVSS7.2AI score0.85944EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.6 views

SUSE CVE-2019-18860

Squid before 4.9, when certain web browsers are used, mishandles HTML in the host aka hostname parameter to cachemgr.cgi...

4.3CVSS6.8AI score0.055EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2020:14460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS6.7AI score0.74477EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2020:1803-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.055EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2020:1134-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2020:1156-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/02/05 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2021-1234)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.055EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/12/15 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2534)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.7AI score0.05706EPSS
Exploits0References2
OSV
OSV
added 2020/11/03 12:32 p.m.39 views

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

8.5CVSS9.1AI score0.7179EPSS
Exploits0References19
OSV
OSV
added 2020/11/03 12:32 p.m.30 views

ALSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS9.2AI score0.7179EPSS
Exploits0References19
AlmaLinux
AlmaLinux
added 2020/11/03 12:32 p.m.57 views

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS8.9AI score0.7179EPSS
Exploits0References19
Debian
Debian
added 2020/07/21 7:7 p.m.63 views

[SECURITY] [DSA 4732-1] squid security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4732-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 21, 2020 https://www.debian.org/security/faq -...

9.3CVSS8.8AI score0.055EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/09 12:0 a.m.38 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:1803-1)

This update for squid fixes the following issues : CVE-2020-14059: Fixed an issue where a client could potentially deny the service of a server during TLS Handshake bsc1173304. CVE-2019-18860: Fixed handling of invalid domain names in cachemgr.cgi bsc1167373. Note that Tenable Network Security ha...

6.5CVSS6.7AI score0.055EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2020/05/13 11:37 a.m.89 views

USN-4356-1: Squid vulnerabilities

Jeriko One discovered that Squid incorrectly handled certain Edge Side Includes ESI responses. A malicious remote server could cause Squid to crash, possibly poison the cache, or possibly execute arbitrary code. CVE-2019-12519, CVE-2019-12521 It was discovered that Squid incorrectly handled the...

9.8CVSS7.1AI score0.27246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/29 12:0 a.m.31 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:1134-1)

This update for squid to version 4.11 fixes the following issues : CVE-2020-11945: Fixed a potential remote code execution vulnerability when using HTTP Digest Authentication bsc1170313. CVE-2019-12519, CVE-2019-12521: Fixed incorrect buffer handling that can result in cache poisoning, remote...

9.8CVSS7.6AI score0.27246EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2020/03/23 12:0 a.m.65 views

Squid < 7.0.1 XSS Vulnerability (SQUID-2023:6)

Squid is prone to a cross-site scripting XSS vulnerability in cachemgr.cgi. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.2AI score0.055EPSS
Exploits0References6
OSV
OSV
added 2020/03/20 9:15 p.m.2 views

DEBIAN-CVE-2019-18860

Squid before 4.9, when certain web browsers are used, mishandles HTML in the host aka hostname parameter to cachemgr.cgi...

6.1CVSS6.7AI score0.055EPSS
Exploits0References1
OSV
OSV
added 2020/03/20 9:15 p.m.28 views

CVE-2019-18860

Squid before 4.9, when certain web browsers are used, mishandles HTML in the host aka hostname parameter to cachemgr.cgi...

6.1CVSS6.4AI score
Exploits0References9
CVE
CVE
added 2020/03/20 8:32 p.m.345 views

CVE-2019-18860

CVE-2019-18860 affects Squid before 4.9; it mishandles HTML in the host (hostname) parameter to cachemgr.cgi when certain browsers are used. Root cause is improper parsing of that parameter, leading to insecure behavior. The vulnerability is addressed in Squid 4.9+ (upgrade suggested). Exploitati...

6.1CVSS7.4AI score0.055EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder