The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Squid

Squid cache: information disclosure via HTTP Request Smuggling
An attacker can bypass access restrictions to data via HTTP Request Smuggling of Squid cache, in order to obtain sensitive information...
CVE-2020-15810, DLA-2394-1, DSA-4751-1, FEDORA-2020-63f3bd656e, FEDORA-2020-73af8655eb, openSUSE-SU-2020:1346-1, openSUSE-SU-2020:1369-1, RHSA-2020:3623-01, RHSA-2020:4082-01, SQUID-2020:10, SUSE-SU-2020:2442-1, SUSE-SU-2020:2443-1, SUSE-SU-2020:2471-1, USN-4477-1, USN-4551-1, VIGILANCE-VUL-33139
Squid cache: overload via Cache Digest Response
An attacker can trigger an overload via Cache Digest Response of Squid cache, in order to trigger a denial of service...
bulletinoct2020, CVE-2020-24606, DLA-2394-1, DSA-4751-1, FEDORA-2020-63f3bd656e, FEDORA-2020-73af8655eb, openSUSE-SU-2020:1346-1, openSUSE-SU-2020:1369-1, RHSA-2020:4082-01, SQUID-2020:9, SUSE-SU-2020:2442-1, SUSE-SU-2020:2443-1, SUSE-SU-2020:2471-1, USN-4477-1, USN-4551-1, VIGILANCE-VUL-33138
Squid cache: information disclosure via HTTP Request Splitting
An attacker can bypass access restrictions to data via HTTP Request Splitting of Squid cache, in order to obtain sensitive information...
CVE-2020-15811, DLA-2394-1, DSA-4751-1, FEDORA-2020-63f3bd656e, FEDORA-2020-73af8655eb, openSUSE-SU-2020:1346-1, openSUSE-SU-2020:1369-1, RHSA-2020:3623-01, RHSA-2020:4082-01, SQUID-2020:8, SUSE-SU-2020:2442-1, SUSE-SU-2020:2443-1, SUSE-SU-2020:2471-1, USN-4477-1, USN-4551-1, VIGILANCE-VUL-33137
Squid cache: spoofing via HTTP Request Cache Poisoning
An attacker can create spoofed data via HTTP Request Cache Poisoning of Squid cache, in order to deceive the victim...
CERTFR-2020-AVI-393, CVE-2020-15049, DLA-2394-1, FEDORA-2020-cbebc5617e, openSUSE-SU-2020:1346-1, openSUSE-SU-2020:1369-1, RHSA-2020:4082-01, SQUID-2020:7, SUSE-SU-2020:14460-1, SUSE-SU-2020:2442-1, SUSE-SU-2020:2443-1, USN-4551-1, VIGILANCE-VUL-32635
Squid cache: denial of service via TLS Handshake
An attacker can trigger a fatal error via TLS Handshake of Squid cache, in order to trigger a denial of service...
CVE-2020-14058, FEDORA-2020-cbebc5617e, openSUSE-SU-2020:0910-1, openSUSE-SU-2020:0914-1, SQUID-2020:6, SUSE-SU-2020:1769-1, SUSE-SU-2020:1770-1, SUSE-SU-2020:1803-1, VIGILANCE-VUL-32590
Squid cache: integer overflow via the HTTP Digest authentication
An attacker can trigger an integer overflow via the HTTP Digest authentication in Squid cache, in order to trigger a denial of service, and possibly to run code...
CERTFR-2020-AVI-239, CVE-2020-11945, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4682-1, FEDORA-2020-56e809930e, FEDORA-2020-848065cc4c, FEDORA-2020-a6a921a591, openSUSE-SU-2020:0623-1, RHSA-2020:2038-01, RHSA-2020:2039-01, RHSA-2020:2040-01, RHSA-2020:2041-01, SQUID-2019:12, SQUID-2020:4, SUSE-SU-2020:1134-1, SUSE-SU-2020:1156-1, SUSE-SU-2020:1227-1, SUSE-SU-2020:14460-1, USN-4356-1, VIGILANCE-VUL-32088
Squid cache: buffer overflow via ESI
An attacker can trigger a buffer overflow via ESI of Squid cache, in order to trigger a denial of service, and possibly to run code...
CERTFR-2020-AVI-239, CVE-2019-12519, CVE-2019-12521, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4682-1, openSUSE-SU-2020:0623-1, RHSA-2020:2038-01, RHSA-2020:2039-01, RHSA-2020:2040-01, RHSA-2020:2041-01, SQUID-2019:12, SQUID-2020:4, SUSE-SU-2020:1134-1, SUSE-SU-2020:1156-1, SUSE-SU-2020:1227-1, SUSE-SU-2020:14460-1, USN-4356-1, VIGILANCE-VUL-32087
Squid: two vulnerabilities via Cache Manager
An attacker can use several vulnerabilities via Cache Manager of Squid...
CVE-2019-12520, CVE-2019-12524, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4682-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, SQUID-2019:4, SUSE-SU-2019:2975-1, SUSE-SU-2020:1227-1, SUSE-SU-2020:14460-1, USN-4446-1, USN-4446-2, VIGILANCE-VUL-32071
Squid cache: Cross Site Scripting via Hostname cachemgr.cgi
An attacker can trigger a Cross Site Scripting via Hostname cachemgr.cgi of Squid cache, in order to run JavaScript code in the context of the web site...
CVE-2019-18860, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4732-1, FEDORA-2019-9538783033, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, openSUSE-SU-2020:0623-1, SUSE-SU-2019:2975-1, SUSE-SU-2019:3067-1, SUSE-SU-2020:1134-1, SUSE-SU-2020:1156-1, SUSE-SU-2020:14460-1, SUSE-SU-2020:1803-1, USN-4356-1, VIGILANCE-VUL-31857
Squid cache: memory corruption via ext_lm_group_acl helper
An attacker can trigger a memory corruption via ext_lm_group_acl helper of Squid cache, in order to trigger a denial of service, and possibly to run code...
CERTFR-2020-AVI-070, CVE-2020-8517, openSUSE-SU-2020:0307-1, openSUSE-SU-2020:0606-1, openSUSE-SU-2020:0623-1, SQUID-2020:3, SUSE-SU-2020:0487-1, SUSE-SU-2020:0493-1, SUSE-SU-2020:0661-1, SUSE-SU-2020:1134-1, SUSE-SU-2020:1156-1, SUSE-SU-2020:14460-1, USN-4289-1, VIGILANCE-VUL-31498
Our database contains other pages. You can request a free trial to read them.

Display information about Squid: