Lucene search
K

168 matches found

Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.6 views

PT-2025-21488

Name of the Vulnerable Software and Affected Versions: wccp-pro WordPress plugin versions prior to 15.3 Description: The issue concerns an open-redirect flaw via the referrer parameter, allowing the redirection of users to external sites. Recommendations: For versions prior to 15.3, update to...

6.1CVSS6.2AI score0.00473EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.6 views

PT-2025-21489 · WordPress · Wccp-Pro

Name of the Vulnerable Software and Affected Versions: wccp-pro WordPress plugin versions prior to 15.3 Description: The issue concerns the wccp-pro WordPress plugin, which does not properly sanitise and escape some of its settings. This could allow high-privilege users, such as administrators, t...

4.8CVSS4.7AI score0.00255EPSS
Exploits1References4
Citrix
Citrix
added 2024/07/13 12:0 a.m.8 views

How to Apply DSCP Marking to CloudBridge Appliance with QoS Enabled

This article explains how to apply DSCP marking to CloudBridge appliance when Quality of Service QoSis enabled. Background Many networking environments use different QoS engine/traffic shaper outside of CloudBridge and hence disable the QoS feature of CloudBridge. Some of the users however would...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.264 views

RHEL 7 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: Information disclosure in Collapsed forwarding CVE-2016-10003 - This vulnerability allows remote...

8AI score0.95785EPSS
Exploits7References13
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.29 views

Rocky Linux 8 : squid:4 (RLSA-2022:1939)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1939 advisory. - Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This ca...

5.3CVSS6AI score0.13005EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.30 views

Amazon Linux 2 : squid (ALASSQUID4-2023-004)

The version of squid installed on the remote host is prior to 4.15-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-004 advisory. Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an...

7.5CVSS6.6AI score0.95785EPSS
Exploits5References18
SUSE CVE
SUSE CVE
added 2023/02/15 6:19 a.m.1 views

SUSE CVE-2005-0211

Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter...

7.5CVSS8.1AI score0.22152EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:22 a.m.5 views

SUSE CVE-2015-0559

Multiple use-after-free vulnerabilities in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allow remote attackers to cause a denial of service application crash via a crafted packet, related to the use of packet-scope memory instead ...

5CVSS7.5AI score0.01578EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:22 a.m.4 views

SUSE CVE-2015-0560

The dissectwccp2r1addresstableinfo function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not initialize certain data structures, which allows remote attackers to cause a denial of service application crash via a crafted...

5CVSS7.3AI score0.01578EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:15 a.m.4 views

SUSE CVE-2015-6249

The dissectwccp2r1addresstableinfo function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.7 does not prevent the conflicting use of a table for both IPv4 and IPv6 addresses, which allows remote attackers to cause a denial of service application crash via a...

4.3CVSS6.8AI score0.02838EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.3 views

SUSE CVE-2021-28116

Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody...

5.3CVSS7.7AI score0.13005EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/06/17 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2022-1916)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.8AI score0.13005EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/17 12:0 a.m.37 views

EulerOS 2.0 SP5 : squid (EulerOS-SA-2022-1916)

According to the versions of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol...

5.3CVSS6AI score0.13005EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.34 views

EulerOS 2.0 SP3 : squid (EulerOS-SA-2022-1766)

According to the versions of the squid packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It doe...

7.5CVSS6.4AI score0.13005EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/05/25 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2022-1766)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.13005EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.28 views

AlmaLinux 8 : squid:4 (ALSA-2022:1939)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:1939 advisory. squid: out-of-bounds read in WCCP protocol data may lead to information disclosure CVE-2021-28116 Tenable has extracted the preceding description block directly fr...

5.3CVSS5.8AI score0.13005EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.27 views

RHEL 8 : squid:4 (RHSA-2022:1939)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:1939 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: out-of-bounds...

5.3CVSS5.9AI score0.13005EPSS
Exploits0References7
OSV
OSV
added 2022/05/10 6:39 a.m.29 views

RLSA-2022:1939 Moderate: squid:4 security and bug fix update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: out-of-bounds read in WCCP protocol data may lead to information disclosure CVE-2021-28116 For more details about the security issues, including the impact, a CV...

5.3CVSS5.6AI score0.13005EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2022/05/10 6:39 a.m.27 views

squid:4 security and bug fix update

An update is available for squid, libecap. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy caching server for web clients,...

5.3CVSS5.7AI score0.13005EPSS
Exploits0
OSV
OSV
added 2022/05/10 12:0 a.m.31 views

ALSA-2022:1939 Moderate: squid:4 security and bug fix update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: out-of-bounds read in WCCP protocol data may lead to information disclosure CVE-2021-28116 For more details about the security issues, including the impact, a CV...

5.3CVSS5.5AI score0.13005EPSS
Exploits0References4
Rows per page
Query Builder