Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-5400

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cachepeer, which allows remote attackers to bypass intended...

6.8CVSS7.2AI score0.16525EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:1996-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79969EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2016:2008-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.7AI score0.79969EPSS
Exploits2References21
Tenable Nessus
Tenable Nessus
added 2016/08/17 12:0 a.m.35 views

openSUSE Security Update : squid (openSUSE-2016-988)

The Squid HTTP proxy has been updated to version 3.3.14, fixing the following security issues : - Fixed multiple Denial of Service issues in HTTP Response processing. CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc968392, bsc968393, bsc968394, bsc968395 - CVE-2016-3947: Buffer...

8.8CVSS6.9AI score0.79969EPSS
Exploits2References34
OpenVAS
OpenVAS
added 2016/05/07 12:0 a.m.39 views

Fedora Update for squid FEDORA-2016-7

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.16525EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/10/28 12:0 a.m.49 views

Squid 'cache_peer' Security Bypass Vulnerability (SQUID-2015:2)

Squid is prone to an access bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:squid-cache:squid"; ifdescripti...

6.8CVSS7.2AI score0.16525EPSS
Exploits1References3
ALT Linux
ALT Linux
added 2015/10/20 12:0 a.m.25 views

Security fix for the ALT Linux 8 package squid version 3.5.10-alt1

Oct. 20, 2015 Alexey Shabalin 3.5.10-alt1 - 3.5.10 - fixed CVE-2015-5400...

6.8CVSS6.2AI score0.16525EPSS
Exploits1
OSV
OSV
added 2015/09/28 8:59 p.m.8 views

CVE-2015-5400

Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cachepeer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request...

8.7AI score
Exploits0References18
UbuntuCve
UbuntuCve
added 2015/09/28 8:59 p.m.22 views

CVE-2015-5400

Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cachepeer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request...

6.8CVSS7AI score0.16525EPSS
Exploits1References3
CVE
CVE
added 2015/09/28 8:0 p.m.157 views

CVE-2015-5400

CVE-2015-5400 affects Squid proxy: Squid versions prior to 3.5.6 fail to properly handle CONNECT method peer responses when configured with cache_peer, allowing remote attackers to bypass access restrictions and access a backend proxy via a CONNECT request. The issue’s root cause is improper hand...

6.8CVSS6.9AI score0.16525EPSS
Exploits1References15Affected Software1
OSV
OSV
added 2015/09/08 5:55 p.m.10 views

MGASA-2015-0347 Updated squid packages fix CVE-2015-5400

Updated squid packages fix security vulnerability: Alex Rousskov discovered that Squid configured with cachepeer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses. In some configurations, it allows remote clients to bypass security in an explicit...

6.8CVSS8.7AI score0.16525EPSS
Exploits1References4
securityvulns
securityvulns
added 2015/08/10 12:0 a.m.60 views

[SECURITY] [DSA 3327-1] squid3 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...

6.8CVSS1.4AI score0.16525EPSS
Exploits1
Debian
Debian
added 2015/08/03 8:33 p.m.36 views

[SECURITY] [DSA 3327-1] squid3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...

6.8CVSS1.7AI score0.16525EPSS
Exploits1
Debian
Debian
added 2015/08/03 8:33 p.m.30 views

[SECURITY] [DSA 3327-1] squid3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...

6.8CVSS6AI score0.16525EPSS
Exploits1
Debian
Debian
added 2015/07/30 8:53 a.m.22 views

[SECURITY] [DLA 286-1] squid3 security update

Package : squid3 Version : 3.1.6-1.2+squeeze5 CVE ID : CVE-2015-5400 Debian Bug : 793128 Alex Rousskov discovered that Squid configured with cachepeer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses. In some configurations, it allows remote clients ...

6.8CVSS6.9AI score0.16525EPSS
Exploits1
Rows per page
Query Builder