Squid Security Vulnerabilities and Issues — Page 3 of Squid CVE List

Lucene search

Squid-cacheSquid

103 matches found

CVE•added 2015/11/06 9:59 p.m.•51 views

CVE-2014-9749

Squid 3.4.4 through 3.4.11 and 3.5.0.1 through 3.5.1, when Digest authentication is used, allow remote authenticated users to retain access by leveraging a stale nonce, aka "Nonce replay vulnerability."

4CVSS7.2AI score0.02832EPSS

CVE•added 2010/09/20 9:0 p.m.•49 views

CVE-2010-3072

The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.

5CVSS6.2AI score0.79499EPSS

CVE•added 2012/04/28 10:6 a.m.•44 views

CVE-2012-2213

Squid 3.1.9 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reproducible, because the researcher is unable to provide a squid.conf file for a vulnerable system, and th...

5CVSS6.9AI score0.04218EPSS

Total number of security vulnerabilities103