Lucene search
K

447 matches found

AlpineLinux
AlpineLinux
added 2026/03/26 12:13 a.m.3 views

CVE-2026-33515

Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. This problem allows a remote attacker to receive small amounts of memory potentially containing sensitive information when responding...

6.9CVSS5.9AI score0.01039EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/26 12:13 a.m.6 views

CVE-2026-33515

Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. This problem allows a remote attacker to receive small amounts of memory potentially containing sensitive information when responding...

6.9CVSS5.3AI score0.01039EPSS
Exploits0
CVE
CVE
added 2026/03/26 12:11 a.m.49 views

CVE-2026-32748

CVE-2026-32748 affects Squid, a web caching proxy. The issue is a heap Use-After-Free in ICP handling, allowing a remote attacker to cause Denial of Service when ICP is enabled (icp_port configured). The attack is remote, requires ICP support, and cannot be mitigated by icp_access rules. A fix is...

8.7CVSS5.8AI score0.08931EPSS
Exploits0References18Affected Software1
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.12 views

Squid 安全漏洞

Squid is a set of open-source proxy servers and web caching servers developed by Squid. This software provides features such as caching the World Wide Web, filtering traffic, and proxy access. Versions of Squid prior to 7.5 contained security vulnerabilities, which were caused by improper input...

6.9CVSS5.8AI score0.01039EPSS
Exploits0References6
OSV
OSV
added 2026/02/25 9:46 a.m.4 views

SUSE-SU-2026:0630-1 Security update 5.1.2 for Multi-Linux Manager Client Tools

This update fixes the following issues: dracut-saltboot: - Update to version 1.1.0 Retry DHCP requests up to 3 times bsc1253004 golang-github-QubitProducts-exporterexporter: - Non-customer-facing optimization around source building golang-github-boynux-squidexporter: - Update to version 1.13.0...

8.6CVSS5.7AI score0.00689EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 4 : squid-3.1.10-20.AXS4.3 (AXSA:2014-373:02)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-373:02 advisory. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid...

5CVSS7.8AI score0.32862EPSS
Exploits1References2
OSV
OSV
added 2026/01/09 2:7 p.m.13 views

OESA-2026-1050 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: A flaw was found in Squid. The limits applied for validation of HTTP response headers are...

7.5CVSS6.6AI score0.05229EPSS
Exploits0References2
OSV
OSV
added 2026/01/09 2:7 p.m.14 views

OESA-2026-1049 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: A flaw was found in Squid. The limits applied for validation of HTTP response headers are...

7.5CVSS6.6AI score0.05229EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2025/12/02 1:16 p.m.8 views

Advisory ROSA-SA-2025-3092

Software: squid 3.5.20 OS: rosa-server79 unaffected versions = squid-3.5.20-17.0.9.res7.13 affected versions squid-3.5.20-17.0.9.res7.13 CVE-ID: CVE-2025-54574 BDU-ID: 2025-09345 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Squid proxy server is related to a buffer overflow in dynamic...

10CVSS8.2AI score0.6332EPSS
Exploits2
OSV
OSV
added 2025/11/21 6:19 p.m.4 views

RLSA-2025:21002 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid-cache: Squid vulnerable to information disclosure via authentication credential leakage in error handling CVE-2025-62168 For more details about the security issues,...

8.6CVSS6.3AI score0.6332EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/11/18 12:0 a.m.7 views

Squid Heap Buffer Overflow

Squid versions prior to 6.4 suffer from a heap-based buffer overflow that is triggered during URN Trivial-HTTP response handling...

9.8CVSS7.3AI score0.22744EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2025/11/12 2:34 a.m.6 views

squid-cache: Squid vulnerable to information disclosure via authentication credential leakage in error handling

A Information Disclosure vulnerability has been identified in the Squid web caching proxy. This flaw occurs when the application fails to properly redact sensitive Hypertext Transfer Protocol HTTP authentication credentials from an error response. A remote client can exploit this by triggering an...

10CVSS5.8AI score0.6332EPSS
Exploits1References6
Redos
Redos
added 2025/11/12 12:0 a.m.7 views

ROS-20251112-01

Squid proxy server vulnerability related to data boundary checking errors during encoding processing ASN.1 long SNMP OIDs in asnbuildobjid function in lib/snmplib/asn1.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service Vulnerability of emailerrdata...

10CVSS6.5AI score0.6332EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2025/11/11 7:17 p.m.7 views

Important: Red Hat Security Advisory: squid security update

An update for squid is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS7.3AI score0.6332EPSS
Exploits1References2
OSV
OSV
added 2025/11/11 12:0 a.m.5 views

ALSA-2025:21002 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid-cache: Squid vulnerable to information disclosure via authentication credential leakage in error handling CVE-2025-62168 For more details about the security issues,...

10CVSS6.5AI score0.6332EPSS
Exploits1References4
OSV
OSV
added 2025/11/11 12:0 a.m.4 views

ALSA-2025:20935 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid-cache: Squid vulnerable to information disclosure via authentication credential leakage in error handling CVE-2025-62168 For more details about the security issues,...

10CVSS6.3AI score0.6332EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.7 views

Debian dla-4369 : squid - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4369 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4369-1 [email protected]...

10CVSS5.4AI score0.6332EPSS
Exploits2References6
AlmaLinux
AlmaLinux
added 2025/11/11 12:0 a.m.8 views

Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid-cache: Squid vulnerable to information disclosure via authentication credential leakage in error handling CVE-2025-62168 For more details about the security issues,...

10CVSS6.3AI score0.6332EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/11/03 1:48 a.m.5 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

10CVSS7.3AI score0.6332EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/10/30 1:37 a.m.4 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this...

10CVSS7.3AI score0.6332EPSS
Exploits1References2
Rows per page
Query Builder