Lucene search
K

541 matches found

OSV
OSV
added 2023/11/21 3:42 p.m.6 views

USN-6500-1 squid vulnerabilities

Joshua Rogers discovered that Squid incorrectly handled validating certain SSL certificates. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS, Ubuntu 23.04, and Ubuntu 23.10. CVE-2023-46724 Joshua...

9.3CVSS6.8AI score0.85944EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.28 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Squid vulnerabilities (USN-6500-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6500-1 advisory. Joshua Rogers discovered that Squid incorrectly handled validating certain SSL certificates. A remote attacker could possibly...

9.3CVSS7AI score0.85944EPSS
Exploits0References6
Amazon
Amazon
added 2023/11/14 12:0 a.m.3 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using --with-openssl are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a...

9.3CVSS6.7AI score0.10221EPSS
Exploits0
OSV
OSV
added 2023/11/10 11:6 a.m.2 views

OESA-2023-1794 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bu...

8.6CVSS6.5AI score0.05955EPSS
Exploits0References3
Veracode
Veracode
added 2023/11/10 5:38 a.m.20 views

Denial Of Service (DoS)

libsquid.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to a NULL pointer dereference in Squid's Gopher gateway which allows an attacker to cause an application crash...

7.5CVSS6.9AI score0.05955EPSS
Exploits0References6Affected Software2
SUSE CVE
SUSE CVE
added 2023/11/08 1:52 a.m.2 views

SUSE CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS6.8AI score0.05955EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2023/11/07 2:37 p.m.54 views

CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid. This issue may lead to a remote denial ...

7.5CVSS7.7AI score0.05955EPSS
Exploits0References5
NVD
NVD
added 2023/11/06 6:15 p.m.28 views

CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7.8AI score0.05955EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2023/11/06 6:15 p.m.26 views

CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7.2AI score0.05955EPSS
Exploits0
OSV
OSV
added 2023/11/06 6:15 p.m.1 views

DEBIAN-CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7.4AI score0.05955EPSS
Exploits0References1
OSV
OSV
added 2023/11/06 6:15 p.m.8 views

AZL-31941 CVE-2023-46728 affecting package squid 5.7-5

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7AI score0.05955EPSS
Exploits0References1
Prion
Prion
added 2023/11/06 6:15 p.m.24 views

Null pointer dereference

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

5CVSS6.9AI score0.05955EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2023/11/06 6:15 p.m.32 views

CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS6.9AI score0.05955EPSS
Exploits0References5
OSV
OSV
added 2023/11/06 6:15 p.m.1 views

UBUNTU-CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7AI score0.05955EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/11/06 5:13 p.m.22 views

CVE-2023-46728 SQUID-2021:8 Denial of Service in Gopher gateway

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS8AI score0.05955EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2023/11/06 5:13 p.m.23 views

CVE-2023-46728

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7.7AI score0.05955EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/11/06 5:13 p.m.12 views

CVE-2023-46728 SQUID-2021:8 Denial of Service in Gopher gateway

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7AI score0.05955EPSS
Exploits0References5
CVE
CVE
added 2023/11/06 5:13 p.m.221 views

CVE-2023-46728

CVE-2023-46728 affects the Squid proxy where a NULL pointer dereference in Squid’s Gopher gateway can cause a Denial of Service. The issue arises because the obsolete Gopher protocol was always available/enabled in older Squid versions; upstream has removed Gopher support in version 6.0.1, and se...

7.5CVSS7.9AI score0.05955EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2023/11/06 5:13 p.m.36 views

CVE-2023-46728 SQUID-2021:8 Denial of Service in Gopher gateway

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggeri...

7.5CVSS7.6AI score0.05955EPSS
Exploits0References8
Fedora
Fedora
added 2023/11/03 1:10 a.m.13 views

[SECURITY] Fedora 37 Update: squid-6.4-1.fc37

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

7.4AI score
Exploits0
Rows per page
Query Builder