Lucene search
+L

34 matches found

Amazon
Amazon
added 2023/09/25 12:0 a.m.5 views

Important: squid

Issue Overview: A flaw was found in squid. Due to incorrect data validation, a HTTP Request Smuggling attack against HTTP and HTTPS traffic is possible leading to cache poisoning. The highest threat from this vulnerability is to data confidentiality and integrity. CVE-2020-15810 A flaw was found ...

8.6CVSS6.7AI score0.05162EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:2442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.1AI score0.05706EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2020:2443-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.1AI score0.05706EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.33 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : squid Multiple Vulnerabilities (NS-SA-2021-0030)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has squid packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as...

9.9CVSS7.3AI score0.7179EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/02/10 12:0 a.m.49 views

Squid 5.x < 5.0.4 Multiple Vulnerabilities

According to its self-reported version number, the version of Squid installed on the remote host is 5.x 5.0.4 or prior to 4.13. It is, therefore, affected by multiple vulnerabilities: - Due to incorrect data validation Squid is vulnerable to HTTP request splitting and HTTP request smuggling attac...

8.6CVSS7.7AI score0.05162EPSS
Exploits0References6
Cent OS
Cent OS
added 2020/11/06 10:15 p.m.145 views

squid security update

CentOS Errata and Security Advisory CESA-2020:4082 An update for squid is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.9CVSS6.8AI score0.7179EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.134 views

CentOS 7 : squid (RHSA-2020:4082)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4082 advisory. - An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as...

9.9CVSS7.3AI score0.7179EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2399)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS8.3AI score0.05162EPSS
Exploits0References2
OSV
OSV
added 2020/11/03 12:32 p.m.31 views

ALSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS9.2AI score0.7179EPSS
Exploits0References19
AlmaLinux
AlmaLinux
added 2020/11/03 12:32 p.m.57 views

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

9.9CVSS8.9AI score0.7179EPSS
Exploits0References19
OSV
OSV
added 2020/11/03 12:32 p.m.39 views

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

8.5CVSS9.1AI score0.7179EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.35 views

EulerOS 2.0 SP2 : squid (EulerOS-SA-2020-2399)

According to the versions of the squid packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It doe...

8.6CVSS6.8AI score0.05162EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/10/30 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2300)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.2AI score0.05162EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.34 views

Amazon Linux 2 : squid (ALAS-2020-1548)

The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1548 advisory. A flaw was found in squid. Due to incorrect data validation, a HTTP Request Smuggling attack against HTTP and HTTPS traffi...

8.6CVSS6.7AI score0.05162EPSS
Exploits0References7
Amazon
Amazon
added 2020/10/27 12:0 a.m.42 views

Important: squid

Issue Overview: A flaw was found in squid. Due to incorrect data validation, a HTTP Request Smuggling attack against HTTP and HTTPS traffic is possible leading to cache poisoning. The highest threat from this vulnerability is to data confidentiality and integrity. CVE-2020-15810 A flaw was found ...

8.6CVSS6.8AI score0.05162EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.36 views

Scientific Linux Security Update : squid on SL7.x x86_64 (20201001)

Security Fixes : - squid: HTTP Request Smuggling could result in cache poisoning CVE-2020-15810 - squid: HTTP Request Splitting could result in cache poisoning CVE-2020-15811 - squid: Information Disclosure issue in FTP Gateway CVE-2019-12528 - squid: Improper input validation issues in HTTP...

9.9CVSS6.8AI score0.7179EPSS
Exploits0References8
Oracle linux
Oracle linux
added 2020/10/08 12:0 a.m.86 views

squid security update

7:3.5.20-17.4 - Resolves: 1872349 - CVE-2020-24606 squid: Improper Input Validation could result in a DoS - Resolves: 1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could result in cache poisoning - Resolves: 1872342 - CVE-2020-15811 squid: HTTP Request Splitting could result in cache...

9.9CVSS0.4AI score0.7179EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.41 views

EulerOS 2.0 SP8 : squid (EulerOS-SA-2020-2159)

According to the version of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a...

8.6CVSS7AI score0.05162EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2127)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.7179EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-2159)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.7AI score0.05162EPSS
Exploits0References2
Rows per page
Query Builder