Vulnerabilities > Squid Cache > Squid > 3.1.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-24 | CVE-2020-24606 | Improper Locking vulnerability in multiple products Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. | 7.5 |
| 2020-06-30 | CVE-2020-14058 | An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. | 7.5 |
| 2020-06-30 | CVE-2020-15049 | HTTP Request Smuggling vulnerability in multiple products An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3. | 8.8 |
| 2020-04-23 | CVE-2020-11945 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in Squid before 5.0.2. | 9.8 |
| 2020-04-15 | CVE-2019-12520 | Improper Input Validation vulnerability in multiple products An issue was discovered in Squid through 4.7 and 5. | 7.5 |
| 2020-04-15 | CVE-2019-12519 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid through 4.7. | 9.8 |
| 2020-04-15 | CVE-2019-12524 | Missing Authentication for Critical Function vulnerability in multiple products An issue was discovered in Squid through 4.7. | 9.8 |
| 2020-04-15 | CVE-2019-12522 | Improper Privilege Management vulnerability in Squid-Cache Squid An issue was discovered in Squid through 4.7. | 4.5 |
| 2020-04-15 | CVE-2019-12521 | Off-by-one Error vulnerability in multiple products An issue was discovered in Squid through 4.7. | 5.9 |
| 2020-03-20 | CVE-2019-18860 | Injection vulnerability in multiple products Squid before 4.9, when certain web browsers are used, mishandles HTML in the host (aka hostname) parameter to cachemgr.cgi. | 6.1 |