Vulnerabilities > Squid Cache

DATE CVE VULNERABILITY TITLE RISK
2020-09-02 CVE-2020-15811 Http Request Smuggling vulnerability in multiple products
An issue was discovered in Squid before 4.13 and 5.x before 5.0.4.
4.0
2020-09-02 CVE-2020-15810 Http Request Smuggling vulnerability in multiple products
An issue was discovered in Squid before 4.13 and 5.x before 5.0.4.
3.5
2020-08-24 CVE-2020-24606 Improper Input Validation vulnerability in multiple products
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message.
7.1
2020-06-30 CVE-2020-14059 Improper Synchronization vulnerability in Squid-Cache Squid 5.0/5.0.1/5.0.2
An issue was discovered in Squid 5.x before 5.0.3.
network
low complexity
squid-cache CWE-662
4.0
2020-06-30 CVE-2020-14058 Null Pointer Dereference vulnerability in Squid-Cache Squid
An issue was discovered in Squid before 4.12 and 5.x before 5.0.3.
network
low complexity
squid-cache CWE-476
5.0
2020-06-30 CVE-2020-15049 Http Request Smuggling vulnerability in multiple products
An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3.
network
low complexity
squid-cache fedoraproject CWE-444
6.5
2020-04-23 CVE-2020-11945 Integer Overflow OR Wraparound vulnerability in Squid-Cache Squid
An issue was discovered in Squid before 5.0.2.
network
low complexity
squid-cache CWE-190
7.5
2020-04-15 CVE-2019-12520 Improper Input Validation vulnerability in Squid-Cache Squid
An issue was discovered in Squid through 4.7 and 5.
network
low complexity
squid-cache CWE-20
5.0
2020-04-15 CVE-2019-12519 Out-Of-Bounds Write vulnerability in Squid-Cache Squid
An issue was discovered in Squid through 4.7.
network
low complexity
squid-cache CWE-787
7.5
2020-04-15 CVE-2019-12524 Missing Authentication FOR Critical Function vulnerability in Squid-Cache Squid
An issue was discovered in Squid through 4.7.
network
low complexity
squid-cache CWE-306
7.5