Lucene search
+L

19 matches found

OSV
OSV
added 2026/03/29 6:58 p.m.4 views

ROOT-OS-ALPINE-318-CVE-2023-46724 CVE-2023-46724 in rootio-squid - Patched by Root

Root has patched CVE-2023-46724 in the rootio-squid package for Root:Alpine:3.18. Multiple fixed versions available...

8.6CVSS5.4AI score0.04012EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : squid-5.5-6.el9_3.5 (AXSA:2024-7340:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7340:01 advisory. squid: Denial of Service in SSL Certificate validation CVE-2023-46724 squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728...

8.6CVSS5.7AI score0.88818EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.60 views

CentOS 7 : squid (RHSA-2024:1787)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1787 advisory. - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4...

8.6CVSS6.7AI score0.88864EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.22 views

Photon OS 5.0: Squid PHSA-2023-5.0-0154

An update of the squid package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0154. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.3CVSS7.1AI score0.85944EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/04/12 12:0 a.m.37 views

Oracle Linux 7 : squid (ELSA-2024-1787)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1787 advisory. - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manag...

8.6CVSS6.9AI score0.95785EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2024/04/05 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2024-0102)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.3AI score0.88864EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/03/12 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2024-1301)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.9AI score0.88818EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/08 12:0 a.m.62 views

RHEL 9 : squid (RHSA-2024:0071)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:0071 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: Deni...

8.6CVSS7.8AI score0.88818EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/01/08 12:0 a.m.57 views

AlmaLinux 9 : squid (ALSA-2024:0071)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2024:0071 advisory. - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4...

8.6CVSS7.3AI score0.88818EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2024/01/08 12:0 a.m.66 views

Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: Denial of Service in SSL Certificate validation CVE-2023-46724 squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728 squid: Buffer over-read...

8.6CVSS7.5AI score0.88818EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/01/04 12:0 a.m.52 views

Oracle Linux 8 : squid:4 (ELSA-2024-0046)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0046 advisory. - Fix squid: Denial of Service in SSL Certificate validation CVE-2023-46724 - Fix squid: NULL pointer dereference in the gopher protocol code...

8.6CVSS7.8AI score0.88818EPSS
Exploits0References5
Amazon
Amazon
added 2023/12/04 12:0 a.m.6 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using --with-openssl are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a...

8.6CVSS6.5AI score0.05955EPSS
Exploits0
OSV
OSV
added 2023/11/21 6:56 p.m.9 views

CLSA-2023-1700592975 squid: Fix of CVE-2023-46724

CVE-2023-46724: Fix validation of certificates with CN=...

8.6CVSS7.1AI score0.04012EPSS
Exploits0References1
OSV
OSV
added 2023/11/21 6:52 p.m.5 views

CLSA-2023-1700592773 squid: Fix of CVE-2023-46724

CVE-2023-46724: Fix validation of certificates with CN=...

8.6CVSS7.1AI score0.04012EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/11/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:4384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.4AI score0.85944EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/11/07 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2023:4381-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.4AI score0.85944EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2023/11/02 3:57 a.m.89 views

CVE-2023-46724

A flaw was found in Squid. Due to an improper validation of the specified index bug, Squid compiled using --with-openssl is vulnerable to a denial of service attack against SSL Certificate validation. This flaw allows a remote server to perform a denial of service against the Squid Proxy by...

7.5CVSS7.2AI score0.04012EPSS
Exploits0References7
NVD
NVD
added 2023/11/01 8:15 p.m.32 views

CVE-2023-46724

Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using --with-openssl are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to...

8.6CVSS8.3AI score0.04012EPSS
Exploits0References7
CVE
CVE
added 2023/11/01 7:9 p.m.194 views

CVE-2023-46724

CVE-2023-46724 : Squid exposes a Denial of Service via improper validation of certificate indices during TLS handshakes when built with OpenSSL. A remote server can disrupt HTTPS/SSL-Bump traffic by presenting a crafted server certificate in the chain. Affected: Squid versions 3.3.0.1–5.9 and 6.0...

8.6CVSS8AI score0.04012EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder