Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-11945

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise...

9.8CVSS7.4AI score0.27246EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.25 views

RHEL 5 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code...

9.6AI score0.74477EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.32 views

Amazon Linux 2 : squid (ALASSQUID4-2023-008)

The version of squid installed on the remote host is prior to 4.11-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-008 advisory. A flaw was found in Squid through version 4.7. When handling the tag esi:when, when ESI is enabled, Squid calls the...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2020:14460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS6.7AI score0.74477EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2020:1156-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2020:1134-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.27 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : squid Multiple Vulnerabilities (NS-SA-2020-0060)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has squid packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function...

9.8CVSS7.2AI score0.74477EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.21 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : squid Multiple Vulnerabilities (NS-SA-2020-0090)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has squid packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function...

9.8CVSS7.2AI score0.74477EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2127)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.7179EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2020/09/04 12:0 a.m.48 views

squid:4 security update

libecap squid 7:4.4-8.2 - Resolves: 1872345 - CVE-2020-15811 squid:4/squid: HTTP Request Splitting could result in cache poisoning - Resolves: 1872330 - CVE-2020-15810 squid:4/squid: HTTP Request Smuggling could result in cache poisoning 7:4.4-8.1 - Resolves: 1828368 - CVE-2019-12519 squid:...

9.8CVSS0.9AI score0.27246EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/09/04 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1931)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.27246EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/02 12:0 a.m.37 views

EulerOS 2.0 SP5 : squid (EulerOS-SA-2020-1931)

According to the versions of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that...

9.8CVSS7.5AI score0.27246EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/08/13 12:0 a.m.60 views

Oracle Linux 8 : squid:4 (ELSA-2020-2041)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-2041 advisory. - Resolves: 1828368 - CVE-2019-12519 squid: improper check for new member in ESIExpression::Evaluate allows for stack buffer overflow - Resolves: 18283...

9.8CVSS6.9AI score0.27246EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/07/31 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1828)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.27246EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/30 12:0 a.m.42 views

EulerOS 2.0 SP8 : squid (EulerOS-SA-2020-1828)

According to the versions of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This functi...

9.8CVSS7.5AI score0.27246EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.38 views

Amazon Linux AMI : squid (ALAS-2020-1386)

The version of squid installed on the remote host is prior to 3.5.20-15.39. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1386 advisory. An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gai...

9.8CVSS7.2AI score0.74477EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2020/05/22 12:0 a.m.40 views

CentOS: Security Advisory for squid (CESA-2020:2040)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.27246EPSS
Exploits0References2
Cent OS
Cent OS
added 2020/05/21 2:55 p.m.151 views

squid security update

CentOS Errata and Security Advisory CESA-2020:2040 An update for squid is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7.3AI score0.27246EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.38 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:1227-1)

This update for squid fixes the following issues : CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses bsc1169659. CVE-2020-11945: fixes a potential remote execution...

9.8CVSS6.7AI score0.27246EPSS
Exploits0References14
Ubuntu
Ubuntu
added 2020/05/13 11:37 a.m.89 views

USN-4356-1: Squid vulnerabilities

Jeriko One discovered that Squid incorrectly handled certain Edge Side Includes ESI responses. A malicious remote server could cause Squid to crash, possibly poison the cache, or possibly execute arbitrary code. CVE-2019-12519, CVE-2019-12521 It was discovered that Squid incorrectly handled the...

9.8CVSS7.1AI score0.27246EPSS
Exploits0
Rows per page
Query Builder