CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/04/20 12:0 a.m.•3 views

RHEL 7 : squid (RHSA-2026:8880)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:8880 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...

OSV•added 2026/04/16 12:1 a.m.•4 views

RLSA-2026:8317 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

7.5CVSS5.8AI score0.01395EPSS

Exploits0References3

Rockylinux•added 2026/04/16 12:1 a.m.•4 views

squid:4 security update

An update is available for squid, libecap, module.libecap, module.squid. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy cachin...

Tenable Nessus•added 2026/04/16 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: squid (UTSA-2026-007175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007175 advisory. Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. Th...

6.9CVSS5.8AI score0.00044EPSS

Exploits0References4

RedHat Linux•added 2026/04/15 2:42 p.m.•4 views

Squid: Squid: Denial of Service via crafted ICP traffic

8.7CVSS5.7AI score0.0021EPSS

AlmaLinux•added 2026/04/15 12:0 a.m.•7 views

Important: squid:4 security update

OSV•added 2026/04/15 12:0 a.m.•4 views

ALSA-2026:8317 Important: squid:4 security update

RedHat Linux•added 2026/04/14 3:9 p.m.•4 views

squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling

A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...

9.2CVSS5.7AI score0.01395EPSS

RedHat Linux•added 2026/04/14 3:9 p.m.•2 views

Squid: Squid: Denial of Service via crafted ICP traffic

8.7CVSS5.7AI score0.0021EPSS

Amazon•added 2026/04/14 12:0 a.m.•5 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap Use-After-Free bugs, Squid is vulnerable to Denial of Service when handling ICP traffic. This problem allows a remote attacker to perform a reliable a...

OSV•added 2026/04/14 12:0 a.m.•1 views

ALSA-2026:8119 Important: squid security update

Oracle linux•added 2026/04/14 12:0 a.m.•5 views

squid security update

7:6.10-6.3 - Resolves: RHEL-160667 - squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 7:6.10-6.2 - Resolves: RHEL-160665 - squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526...

Mageia•added 2026/04/12 5:23 a.m.•5 views

Updated squid packages fix security vulnerabilities

Squid mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asnbuildobjid in lib/snmplib/asn1.c. CVE-2025-59362 Squid vulnerable to information disclosure via authentication credential leakage in error handling. CVE-2025-62168 Squid vulnerable to Denial of Service in ICP Request handling...

10CVSS6.6AI score0.18807EPSS

Exploits2References5

CloudLinux•added 2026/04/09 1:55 p.m.•6 views

squid34: Fix of 2 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

OSV•added 2026/04/08 8:59 p.m.•4 views

CLSA-2026-1775209032 squid: Fix of 2 CVEs

CVE-2026-33515: fix validation of packet sizes and URLs in ICP - CVE-2026-33526: fix escaping malformed URI twice when sending ICP errors...

Ubuntu•added 2026/04/08 12:37 p.m.•4 views

Exploits0References1

USN-8157-1: Squid vulnerabilities

It was discovered that Squid incorrectly handled certain ICP traffic. In environments where ICP support is enabled, a remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or obtain small amounts of sensitive information...

9.2CVSS6AI score0.01395EPSS

OSV•added 2026/04/08 12:37 p.m.•1 views

USN-8157-1 squid vulnerabilities

Tenable Nessus•added 2026/04/07 12:0 a.m.•3 views

Exploits0References4

RockyLinux 9 : squid (RLSA-2026:6301)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:6301 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS6AI score0.01395EPSS

Exploits0References5

Tenable Nessus•added 2026/04/05 12:0 a.m.•10 views

RHEL 9 : squid (RHSA-2026:6301)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:6301 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...

9.2CVSS6AI score0.01395EPSS