Lucene search
K

23 matches found

nessus
nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2019-18676

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of...

7.5CVSS6.9AI score0.0918EPSS
Exploits0References2
nessus
nessus
added 2023/09/27 12:0 a.m.45 views

Amazon Linux 2 : squid (ALASSQUID4-2023-007)

The version of squid installed on the remote host is prior to 4.10-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-007 advisory. An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTT...

9.8CVSS6.9AI score0.24401EPSS
Exploits0References12
nessus
nessus
added 2023/06/05 12:0 a.m.41 views

Amazon Linux 2 : squid (ALAS-2023-2065)

The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2065 advisory. An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTTP...

9.1CVSS7AI score0.0918EPSS
Exploits0References6
openvas
openvas
added 2022/03/15 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2022:14908-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.0918EPSS
Exploits0References5
openvas
openvas
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2020:0661-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.7179EPSS
Exploits0References11
openvas
openvas
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2019:3067-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.7AI score0.74477EPSS
Exploits1References9
osv
osv
added 2020/11/03 12:32 p.m.39 views

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

8.5CVSS9.1AI score0.7179EPSS
Exploits0References19
osv
osv
added 2020/11/03 12:32 p.m.30 views

ALSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS9.2AI score0.7179EPSS
Exploits0References19
almalinux
almalinux
added 2020/11/03 12:32 p.m.57 views

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS8.9AI score0.7179EPSS
Exploits0References19
osv
osv
added 2020/08/03 1:25 p.m.8 views

USN-4446-1 squid3 vulnerabilities

Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. CVE-2019-12520 Jeriko One and Kristoffer Danielsson discovered that Squid...

9.8CVSS6.8AI score0.0918EPSS
Exploits0References5
ubuntu
ubuntu
added 2020/08/03 1:25 p.m.78 views

USN-4446-1: Squid vulnerabilities

Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. CVE-2019-12520 Jeriko One and Kristoffer Danielsson discovered that Squid...

9.8CVSS6.7AI score0.0918EPSS
Exploits0
debian
debian
added 2020/05/08 7:10 p.m.169 views

[SECURITY] [DSA 4682-1] squid security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4682-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 08, 2020 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.7179EPSS
Exploits0
nessus
nessus
added 2020/03/13 12:0 a.m.46 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:0661-1)

This update for squid fixes the following issues : CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway bsc1162689. CVE-2019-12526: Fixed potential remote code execution during URN processing bsc1156326. CVE-2019-12523,CVE-2019-18676: Fixed multiple improper validations in URI...

9.8CVSS7.6AI score0.7179EPSS
Exploits0References29
openvas
openvas
added 2020/02/24 12:0 a.m.44 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1133)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.40982EPSS
Exploits0References2
openvas
openvas
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1034)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.40982EPSS
Exploits0References2
redhatcve
redhatcve
added 2019/12/30 9:53 p.m.32 views

CVE-2019-18676

An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy. Severity is high due to this vulnerability occurring before normal security checks; any remote...

7.5CVSS2.8AI score0.0918EPSS
Exploits0References4
openvas
openvas
added 2019/12/05 12:0 a.m.54 views

Ubuntu: Security Advisory (USN-4213-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.40982EPSS
Exploits0References2
nessus
nessus
added 2019/12/05 12:0 a.m.33 views

Fedora 31 : 7:squid (2019-9538783033)

New version update - squid 4.9 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

9.8CVSS6.4AI score0.40982EPSS
Exploits0References7
osv
osv
added 2019/11/26 5:15 p.m.23 views

CVE-2019-18676

An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy. Severity is high due to this vulnerability occurring before normal security checks; any remote...

7.5CVSS7.1AI score
Exploits0References10
ubuntucve
ubuntucve
added 2019/11/26 5:15 p.m.32 views

CVE-2019-18676

An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy. Severity is high due to this vulnerability occurring before normal security checks; any remote...

7.5CVSS6.9AI score0.0918EPSS
Exploits0References4
Rows per page
Query Builder