The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Squid cache

Squid cache: five vulnerabilities
An attacker can use several vulnerabilities of Squid cache...
CERTFR-2019-AVI-552, CVE-2019-12523, CVE-2019-12526, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, DLA-2028-1, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4682-1, FEDORA-2019-9538783033, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2020:4743-01, SQUID-2019:10, SQUID-2019:11, SQUID-2019:7, SQUID-2019:8, SQUID-2019:9, SUSE-SU-2019:2975-1, SUSE-SU-2019:3067-1, SUSE-SU-2020:0661-1, SUSE-SU-2020:14460-1, USN-4213-1, USN-4446-1, USN-4446-2, VIGILANCE-VUL-30798
Squid: out-of-bounds memory reading via cachemgr.cgi
An attacker can force a read at an invalid address via cachemgr.cgi of Squid, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-332, CVE-2019-12854, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2020:4743-01, SQUID-2019:1, SUSE-SU-2019:2975-1, USN-4213-1, VIGILANCE-VUL-29769
Squid: information disclosure via Basic Authentication uudecode
An attacker can bypass access restrictions to data via Basic Authentication uudecode of Squid, in order to obtain sensitive information...
CERTFR-2019-AVI-332, CVE-2019-12529, DLA-1858-1, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2020:4743-01, SQUID-2019:2, SUSE-SU-2019:2089-1, SUSE-SU-2019:2975-1, SUSE-SU-2020:14460-1, USN-4065-1, USN-4065-2, VIGILANCE-VUL-29762
Squid: buffer overflow via Basic Authentication HttpHeader-getAuth
An attacker can trigger a buffer overflow via Basic Authentication HttpHeader::getAuth of Squid, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-332, CVE-2019-12527, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2019:2593-01, SQUID-2019:5, SUSE-SU-2019:2975-1, USN-4065-1, VIGILANCE-VUL-29761
Squid: integer overflow via Digest Authentication Single Quote
An attacker can trigger an integer overflow via Digest Authentication Single Quote of Squid, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-332, CVE-2019-12525, DLA-1858-1, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2020:2040-01, SQUID-2019:3, SUSE-SU-2019:2089-1, SUSE-SU-2019:2975-1, SUSE-SU-2020:14460-1, USN-4065-1, USN-4065-2, VIGILANCE-VUL-29760
Squid: Cross Site Scripting via cachemgr.cgi
An attacker can trigger a Cross Site Scripting via cachemgr.cgi of Squid, in order to run JavaScript code in the context of the web site...
4957, CERTFR-2019-AVI-332, CVE-2019-13345, DLA-1847-1, DLA-2278-1, DLA-2278-2, DLA-2278-3, DSA-4507-1, openSUSE-SU-2019:1963-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2019:3476-01, RHSA-2020:1068-01, SQUID-2019:6, SUSE-SU-2019:2089-1, SUSE-SU-2019:2092-1, SUSE-SU-2019:2975-1, SUSE-SU-2019:3067-1, SUSE-SU-2020:14460-1, USN-4059-1, USN-4059-2, VIGILANCE-VUL-29702
Squid cache: denial of service via SNMP
An attacker can send malicious SNMP packets to Squid cache, in order to trigger a denial of service...
CERTFR-2018-AVI-518, SQUID-2018:5, VIGILANCE-VUL-27634
Squid cache: Cross Site Scripting via TLS Errors
An attacker can trigger a Cross Site Scripting via TLS Errors of Squid cache, in order to run JavaScript code in the context of the web site...
bulletinoct2018, CERTFR-2018-AVI-518, CVE-2018-19131, CVE-2018-19132, DLA-1596-1, DLA-2278-1, DLA-2278-2, DLA-2278-3, FEDORA-2018-714298460e, openSUSE-SU-2018:3818-1, openSUSE-SU-2018:3825-1, SQUID-2018:4, SUSE-SU-2018:3771-1, SUSE-SU-2018:3771-2, SUSE-SU-2018:3786-1, SUSE-SU-2018:3790-1, USN-4059-1, USN-4059-2, VIGILANCE-VUL-27633
Squid cache: denial of service via ESI Response
An attacker can generate a fatal error via ESI Response of Squid cache, in order to trigger a denial of service...
CERTFR-2018-AVI-192, CVE-2018-1172, openSUSE-SU-2018:1135-1, SQUID-2018:3, SUSE-SU-2018:1365-1, VIGILANCE-VUL-25912, ZDI-18-309
Squid cache: denial of service
An attacker can generate a fatal error of Squid cache, in order to trigger a denial of service...
bulletinjul2018, CERTFR-2018-AVI-046, CVE-2018-1000024, CVE-2018-1000027, DLA-1266-1, DLA-1267-1, DSA-4122-1, FEDORA-2018-4fabf63492, openSUSE-SU-2018:0647-1, RHSA-2020:1068-01, SQUID-2018:1, SQUID-2018:2, USN-3557-1, VIGILANCE-VUL-25134
Our database contains other pages. You can request a free trial to read them.

Display information about Squid cache: