Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.2 views

SUSE CVE-2020-25097

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uriwhitespace configuration settings...

8.6CVSS7AI score0.08161EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.3 views

The vulnerability in the uri_whitespace configuration implementation of the Squid proxy server allows a hacker to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the uriwhitespace configuration in the Squid proxy server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to send hidden HTTP requests remotely. This constitutes an HTTP Request Smuggling attack...

8.3CVSS7.5AI score0.08161EPSS
Exploits0References13Affected Software5
OSV
OSV
added 2021/03/19 5:15 a.m.1 views

DEBIAN-CVE-2020-25097

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uriwhitespace configuration settings...

8.6CVSS7.9AI score0.08161EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 5:15 a.m.2 views

ALPINE-CVE-2020-25097

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uriwhitespace configuration settings...

8.6CVSS7AI score0.08161EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 5:15 a.m.3 views

UBUNTU-CVE-2020-25097

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uriwhitespace configuration settings...

8.6CVSS6.9AI score0.08161EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/03/19 4:8 a.m.46 views

CVE-2020-25097

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uriwhitespace configuration settings...

8.6CVSS8.7AI score0.08161EPSS
Exploits0
Rows per page
Query Builder