Lucene search
+L

23 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 3: squid:4 (TSSA-2022:0124)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0124 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.9CVSS7.4AI score0.74477EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-12520

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It does this by makin...

7.5CVSS6.7AI score0.03935EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.25 views

RHEL 5 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code...

9.6AI score0.74477EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.38 views

Rocky Linux 8 : squid:4 (RLSA-2020:4743)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4743 advisory. - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It does thi...

9.9CVSS7.5AI score0.7179EPSS
Exploits0References37
Tenable Nessus
Tenable Nessus
added 2023/10/06 12:0 a.m.47 views

Amazon Linux 2 : squid (ALASSQUID4-2023-010)

The version of squid installed on the remote host is prior to 4.15-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-010 advisory. 2023-10-12: CVE-2022-41317 was added to this advisory. An issue was discovered in Squid through 4.7 and 5. When receivin...

9.8CVSS6.9AI score0.04151EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.41 views

Amazon Linux 2 : squid (ALASSQUID4-2023-009)

The version of squid installed on the remote host is prior to 4.15-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-009 advisory. An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can...

9.8CVSS6.9AI score0.04151EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.35 views

EulerOS 2.0 SP3 : squid (EulerOS-SA-2022-1766)

According to the versions of the squid packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It doe...

7.5CVSS6.4AI score0.13005EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/05/25 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2022-1766)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.13005EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2020:14460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS6.7AI score0.74477EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2399)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS8.3AI score0.05162EPSS
Exploits0References2
OSV
OSV
added 2020/11/03 12:32 p.m.39 views

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

8.5CVSS9.1AI score0.7179EPSS
Exploits0References19
OSV
OSV
added 2020/11/03 12:32 p.m.31 views

ALSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS9.2AI score0.7179EPSS
Exploits0References19
AlmaLinux
AlmaLinux
added 2020/11/03 12:32 p.m.57 views

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS8.9AI score0.7179EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.35 views

EulerOS 2.0 SP2 : squid (EulerOS-SA-2020-2399)

According to the versions of the squid packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It doe...

8.6CVSS6.8AI score0.05162EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/08/31 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1884)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.10493EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2020/08/03 1:25 p.m.78 views

USN-4446-1: Squid vulnerabilities

Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. CVE-2019-12520 Jeriko One and Kristoffer Danielsson discovered that Squid...

9.8CVSS6.7AI score0.0918EPSS
Exploits0
OSV
OSV
added 2020/08/03 1:25 p.m.8 views

USN-4446-1 squid3 vulnerabilities

Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. CVE-2019-12520 Jeriko One and Kristoffer Danielsson discovered that Squid...

9.8CVSS6.8AI score0.0918EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.38 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:1227-1)

This update for squid fixes the following issues : CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses bsc1169659. CVE-2020-11945: fixes a potential remote execution...

9.8CVSS6.7AI score0.27246EPSS
Exploits0References14
Debian
Debian
added 2020/05/08 7:10 p.m.174 views

[SECURITY] [DSA 4682-1] squid security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4682-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 08, 2020 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.7179EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/24 8:33 a.m.53 views

CVE-2019-12520

A flaw was found in squid. The absolute URL of a request can include the decoded UserInfo username and password for certain protocols. This decoded info may contain special characters to delimit the domain, and treat the rest of the URL as a path or query string. An attacker could first make a...

5CVSS1.8AI score0.03935EPSS
Exploits0References4
Rows per page
Query Builder