CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

196 matches found

CVE•added 2023/11/03 7:58 a.m.•373 views

CVE-2023-46847

CVE-2023-46847 affects the Squid proxy: a DoS possibility via a Denial of Service caused by a heap buffer overflow when parsing HTTP Digest Authentication, by writing up to 2 MB of arbitrary data. Affected component is the Digest Authentication parsing in Squid; impact is primarily availability (...

8.6CVSS8.8AI score0.38209EPSS

Exploits0References19Affected Software1

AlpineLinux•added 2023/11/03 7:58 a.m.•28 views

CVE-2023-46847

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS8AI score0.38209EPSS

Exploits0

Cvelist•added 2023/11/03 7:58 a.m.•30 views

CVE-2023-46847 Squid: denial of service in http digest authentication

8.6CVSS9.4AI score0.38209EPSS

Exploits0References17

RedHat Linux•added 2023/11/02 9:59 a.m.•4 views

squid: Denial of Service in HTTP Digest Authentication

8.6CVSS6.1AI score0.38209EPSS

Exploits0References5

RedHat Linux•added 2023/11/02 9:59 a.m.•57 views

Critical: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.3CVSS6.7AI score0.38209EPSS

Exploits0References3

OSV•added 2023/11/02 12:0 a.m.•29 views

ALSA-2023:6267 Critical: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication CVE-2023-46847 SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP CVE-2023-46846 Fo...

9.3CVSS7.8AI score0.38209EPSS

Exploits0References6

OSV•added 2023/11/02 12:0 a.m.•31 views

ALSA-2023:6266 Critical: squid security update

9.3CVSS7.8AI score0.38209EPSS

Exploits0References8

AlmaLinux•added 2023/11/02 12:0 a.m.•24 views

Critical: squid:4 security update

9.3CVSS7.4AI score0.38209EPSS

Exploits0References6

Amazon•added 2023/10/28 12:0 a.m.•26 views

Critical: squid

Issue Overview: Due to a buffer overflow bug Squid is vulnerable to a Denial of Service attack against HTTP Digest Authentication CVE-2023-46847 Affected Packages: squid Issue Correction: Run yum update squid or yum update --advisory ALAS-2023-1872 to update your system. New Packages: i686: ...

8.6CVSS8.8AI score0.38209EPSS

Exploits0

RedhatCVE•added 2023/10/27 8:57 a.m.•100 views

CVE-2023-46847

8.6CVSS7.3AI score0.38209EPSS

Exploits0References4

Veracode•added 2023/10/25 7:28 a.m.•8 views

Denial Of Service (DoS)

libsquid.so is vulnerable to Denial of Service DoS. This vulnerability allows a remote attacker to exploit a buffer overflow in the HTTP Digest Authentication mechanism of Squid to write up to 2 MB of arbitrary data to the heap memory of a vulnerable Squid server. This can cause a denial-of-servi...

7.8AI score

Exploits0

Rockylinux•added 2023/10/24 6:36 p.m.•61 views

php security update

An update is available for php. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting language commonly used with the Apache HTTP...

9.8CVSS7.4AI score0.31766EPSS

Exploits6

OSV•added 2023/10/24 6:35 p.m.•35 views

RLSA-2023:5927 Important: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS...

9.8CVSS7.9AI score0.31766EPSS

Exploits6References7

Rockylinux•added 2023/10/24 6:35 p.m.•85 views

php:8.0 security update

An update is available for module.php, module.php-pear, module.php-pecl-apcu, php-pecl-rrd, module.php-pecl-xdebug3, php, php-pear, php-pecl-zip, module.php-pecl-zip, module.php-pecl-rrd, php-pecl-apcu, php-pecl-xdebug3, module.libzip, libzip. This update affects Rocky Linux 8. A Common...

9.8CVSS7.6AI score0.31766EPSS

Exploits6

FreeBSD•added 2023/10/21 12:0 a.m.•14 views

squid -- Multiple vulnerabilities

The squid-cache project reports: Denial of Service in FTP Request/Response smuggling in HTTP/1.1 and ICAP Denial of Service in HTTP Digest Authentication...

7AI score

Exploits0References3

OpenVAS•added 2023/10/20 12:0 a.m.•22 views

Squid DoS Vulnerability (GHSA-phqj-m8gv-cq4g, SQUID-2023:3)

Squid is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:squid-cache:squid";...

8.6CVSS8.5AI score0.38209EPSS

Exploits0References6

RedHat Linux•added 2023/10/19 1:33 p.m.•96 views

Important: Red Hat Security Advisory: php:8.0 security update

An update for the php:8.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.31766EPSS

Exploits6References7

AlmaLinux•added 2023/10/19 12:0 a.m.•69 views

Important: php security update

9.8CVSS9.5AI score0.31766EPSS

Exploits6References14

OSV•added 2023/10/19 12:0 a.m.•27 views

ALSA-2023:5926 Important: php security update

9.8CVSS7.9AI score0.31766EPSS

Exploits6References14

AlmaLinux•added 2023/10/19 12:0 a.m.•67 views

Important: php:8.0 security update