Vulnerabilities > Squid Cache

DATE CVE VULNERABILITY TITLE RISK
2020-06-30 CVE-2020-15049 HTTP Request Smuggling vulnerability in multiple products
An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3.
network
low complexity
squid-cache fedoraproject CWE-444
8.8
2020-04-23 CVE-2020-11945 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in Squid before 5.0.2.
network
low complexity
squid-cache debian opensuse fedoraproject canonical CWE-190
critical
9.8
2020-04-15 CVE-2019-12520 Improper Input Validation vulnerability in multiple products
An issue was discovered in Squid through 4.7 and 5.
network
low complexity
squid-cache canonical debian CWE-20
7.5
2020-04-15 CVE-2019-12519 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Squid through 4.7.
network
low complexity
squid-cache debian canonical opensuse CWE-787
critical
9.8
2020-04-15 CVE-2019-12524 Missing Authentication for Critical Function vulnerability in multiple products
An issue was discovered in Squid through 4.7.
network
low complexity
squid-cache debian canonical CWE-306
critical
9.8
2020-04-15 CVE-2019-12522 Improper Privilege Management vulnerability in Squid-Cache Squid
An issue was discovered in Squid through 4.7.
local
high complexity
squid-cache CWE-269
4.5
2020-04-15 CVE-2019-12521 Off-by-one Error vulnerability in multiple products
An issue was discovered in Squid through 4.7.
network
high complexity
squid-cache canonical debian opensuse CWE-193
5.9
2020-03-20 CVE-2019-18860 Injection vulnerability in multiple products
Squid before 4.9, when certain web browsers are used, mishandles HTML in the host (aka hostname) parameter to cachemgr.cgi.
network
low complexity
squid-cache debian canonical opensuse CWE-74
6.1
2020-02-04 CVE-2019-12528 An issue was discovered in Squid before 4.10. 7.5
2020-02-04 CVE-2020-8517 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Squid before 4.10.
network
low complexity
squid-cache opensuse canonical CWE-787
7.5