Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CloudLinux
CloudLinuxadded 2025/09/05 12:48 p.m.5 views

squid: Fix of CVE-2025-54574

CVE-2025-54574: fix buffer overflow in URN handling...

9.8CVSS7.5AI score0.23455EPSS
Exploits1
CloudLinux
CloudLinuxadded 2025/09/04 8:8 p.m.6 views

squid34: Fix of CVE-2025-54574

CVE-2025-54574: fix buffer overflow in URN handling...

9.8CVSS7.5AI score0.23455EPSS
Exploits1
OSV
OSVadded 2025/09/04 7:45 p.m.5 views

CLSA-2025-1757015131 squid: Fix of CVE-2025-54574

CVE-2025-54574: fix buffer overflow in URN handling...

9.8CVSS6AI score0.23455EPSS
Exploits1References1
OSV
OSVadded 2025/09/04 7:37 p.m.4 views

CLSA-2025-1757014622 squid34: Fix of CVE-2025-54574

CVE-2025-54574: fix buffer overflow in URN handling...

9.8CVSS7.5AI score0.23455EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/08/01 6:2 p.m.5 views

CVE-2025-54574 Squid's URN Handling can lead to Buffer Overflow

Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access...

9.3CVSS7.8AI score0.23455EPSS
Exploits1References3
CVE
CVEadded 2025/08/01 6:2 p.m.248 views

CVE-2025-54574

Summary: CVE-2025-54574 affects Squid proxy. In versions 6.3 and older, URN processing causes a heap buffer overflow that can enable remote code execution. Fix released in 6.4; workaround: disable URN access permissions. Multiple advisories (Debian, CloudLinux, Astra Linux, Fedora, etc.) corrobor...

9.8CVSS8.5AI score0.23455EPSS
Exploits1References5Affected Software1
Amazon
Amazonadded 2023/09/25 12:0 a.m.3 views

Important: squid

Issue Overview: An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTTP request doesn't go through the access checks that incoming HTTP requests go through. This causes all access checks to be bypassed and allows access to restrict...

9.8CVSS7.6AI score0.24401EPSS
Exploits0
BDU FSTEC
BDU FSTECadded 2021/03/30 12:0 a.m.3 views

The vulnerability of Squid proxy server’s mechanism for processing URN responses is related to the lack of a mechanism for verifying the size of copied data. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Squid proxy server’s mechanism for processing URN responses is related to the lack of a mechanism for checking the size of the copied data. Exploiting this vulnerability can allow an attacker operating remotely to gain access to confidential data, compromise its integrity...

9.8CVSS6.6AI score0.20251EPSS
Exploits0References10Affected Software5
OSV
OSVadded 2020/01/29 3:15 a.m.3 views

CVE-2019-20216

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi in /htdocs/cgibin, because REMOTEPORT is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an...

9.8CVSS6AI score0.03673EPSS
Exploits0References3
Rows per page
Query Builder