Lucene search
+L

27 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2019-12526

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid before 4.9. URN response handling in Squid suffers from a heap-based buffer overflow. When receiving data from a remote server ...

9.8CVSS7.1AI score0.20251EPSS
Exploits0References2
Circl
Circl
added 2024/02/28 11:12 a.m.3 views

CVE-2019-12526

creationtimestamp| type| source ---|---|--- 2024-02-28 11:12:00+00:00| seen| https://t.me/ctinow/195323...

9.8CVSS6.7AI score0.20251EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.38 views

Rocky Linux 8 : squid:4 (RLSA-2020:4743)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4743 advisory. - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It does thi...

9.9CVSS7.5AI score0.7179EPSS
Exploits0References37
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.47 views

Amazon Linux 2 : squid (ALASSQUID4-2023-007)

The version of squid installed on the remote host is prior to 4.10-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-007 advisory. An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTT...

9.8CVSS6.9AI score0.24401EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/07/03 12:0 a.m.42 views

Amazon Linux AMI : squid (ALAS-2023-1774)

The version of squid installed on the remote host is prior to 3.5.20-17.49. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1774 advisory. An issue was discovered in Squid before 4.9. URN response handling in Squid suffers from a heap-based buffer overflow. When...

9.8CVSS7.2AI score0.20251EPSS
Exploits0References4
Amazon
Amazon
added 2023/06/27 12:0 a.m.27 views

Important: squid

Issue Overview: An issue was discovered in Squid before 4.9. URN response handling in Squid suffers from a heap-based buffer overflow. When receiving data from a remote server in response to an URN request, Squid fails to ensure that the response can fit within the buffer. This leads to attacker...

9.8CVSS7.1AI score0.20251EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/08 12:0 a.m.45 views

Amazon Linux 2 : squid (ALAS-2023-2081)

The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2081 advisory. An issue was discovered in Squid before 4.9. URN response handling in Squid suffers from a heap-based buffer overflow. When receivi...

9.8CVSS7.2AI score0.20251EPSS
Exploits0References4
Amazon
Amazon
added 2023/06/07 12:0 a.m.61 views

Important: squid

Issue Overview: An issue was discovered in Squid before 4.9. URN response handling in Squid suffers from a heap-based buffer overflow. When receiving data from a remote server in response to an URN request, Squid fails to ensure that the response can fit within the buffer. This leads to attacker...

9.8CVSS7AI score0.20251EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2020:14460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS6.7AI score0.74477EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2019:3067-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.7AI score0.74477EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2020:0661-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.7179EPSS
Exploits0References11
OSV
OSV
added 2020/11/03 12:32 p.m.39 views

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

8.5CVSS9.1AI score0.7179EPSS
Exploits0References19
AlmaLinux
AlmaLinux
added 2020/11/03 12:32 p.m.57 views

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS8.9AI score0.7179EPSS
Exploits0References19
OSV
OSV
added 2020/11/03 12:32 p.m.30 views

ALSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS9.2AI score0.7179EPSS
Exploits0References19
Debian
Debian
added 2020/05/08 7:10 p.m.174 views

[SECURITY] [DSA 4682-1] squid security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4682-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 08, 2020 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.7179EPSS
Exploits0
Hacker One
Hacker One
added 2020/03/19 5:10 p.m.64 views

Internet Bug Bounty: UrnState Heap Overflow

Summary: When handling a URN Request an attacker controlled response can cause Squid to overflow a heap buffer. The buffer exist within a struct so not only does it allow an attacker to overflow adjacent memory, but also control a pointer that follows the buffer enabling them to free arbitrary...

7.5CVSS9.5AI score0.20251EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/13 12:0 a.m.47 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:0661-1)

This update for squid fixes the following issues : CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway bsc1162689. CVE-2019-12526: Fixed potential remote code execution during URN processing bsc1156326. CVE-2019-12523,CVE-2019-18676: Fixed multiple improper validations in URI...

9.8CVSS7.6AI score0.7179EPSS
Exploits0References29
Check Point Advisories
Check Point Advisories
added 2020/03/01 12:0 a.m.4 views

Squid Proxy Heap Buffer Overflow (CVE-2019-12526)

A heap buffer overflow vulnerability has been reported in Squid Proxy. Successful exploitation could result in execution of arbitrary code under the security context of the squid process...

7.5CVSS2.4AI score0.20251EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/02/24 12:0 a.m.44 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1133)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.40982EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1034)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.40982EPSS
Exploits0References2
Rows per page
Query Builder