30 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-41317
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid 4.9 through 4.17 and 5.0.6 through 5.6. Due to inconsistent handling of internal URIs, there can be Exposure of Sensitive...
Fedora 37 : squid (2022-102c59d287)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-102c59d287 advisory. - version update to 5.7. - security fixes CVE-2022-41317 Tenable has extracted the preceding description block directly from the Fedora security...
RHEL 8 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - squid: exposure of sensitive information in cache manager CVE-2022-41317 Note that Nessus has not tested for this...
RHEL 9 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - squid: exposure of sensitive information in cache manager CVE-2022-41317 Note that Nessus has not tested for this...
Amazon Linux 2 : squid (ALASSQUID4-2023-009)
The version of squid installed on the remote host is prior to 4.15-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SQUID4-2023-009 advisory. An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can...
CVE-2022-41317
creationtimestamp| type| source ---|---|--- 2022-12-25 22:40:15+00:00| seen| https://t.me/cibsecurity/55313 2025-04-14 18:54:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11684...
CVE-2022-41317
An issue was discovered in Squid 4.9 through 4.17 and 5.0.6 through 5.6. Due to inconsistent handling of internal URIs, there can be Exposure of Sensitive Information about clients using the proxy via an HTTPS request to an internal cache manager URL. This is fixed in 5.7...
CVE-2022-41317
An issue was discovered in Squid 4.9 through 4.17 and 5.0.6 through 5.6. Due to inconsistent handling of internal URIs, there can be Exposure of Sensitive Information about clients using the proxy via an HTTPS request to an internal cache manager URL. This is fixed in 5.7...
CVE-2022-41317
An issue was discovered in Squid 4.9 through 4.17 and 5.0.6 through 5.6. Due to inconsistent handling of internal URIs, there can be Exposure of Sensitive Information about clients using the proxy via an HTTPS request to an internal cache manager URL. This is fixed in 5.7...
CVE-2022-41317
Squid CVE-2022-41317 affects versions 4.9–4.17 and 5.0.6–5.6; due to inconsistent handling of internal URIs, there is Exposure of Sensitive Information about clients via an HTTPS request to an internal cache manager URL. The issue is fixed in version 5.7. Remediation: update Squid to 5.7 or apply...
Fedora 36 : squid (2022-c8cad41c95)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-c8cad41c95 advisory. - version update to 5.7. - security fixes CVE-2022-41317 Tenable has extracted the preceding description block directly from the Fedora security...
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2022-2807)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : squid (EulerOS-SA-2022-2807)
According to the versions of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This update for squid fixes the following issues: Updated squid to version 5.7: - CVE-2022-41317: Fixed exposure of sensitive information in cache...
Debian: Security Advisory (DSA-5258-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5258-1] squid security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5258-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 19, 2022 https://www.debian.org/security/faq -...
SUSE: Security Advisory (SUSE-SU-2022:3596-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 / openSUSE 15 Security Update : squid (SUSE-SU-2022:3596-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3596-1 advisory. - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer...
SUSE-SU-2022:3596-1 Security update for squid
This update for squid fixes the following issues: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication bsc1203680...
Debian: Security Advisory (DLA-3151-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3151 : squid - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3151 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3151-1 [email protected]...