8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
7.4 High
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.7%
Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects.
Security Fix(es):
squid: DoS against HTTP and HTTPS (CVE-2023-5824)
squid: Denial of Service in SSL Certificate validation (CVE-2023-46724)
squid: NULL pointer dereference in the gopher protocol code (CVE-2023-46728)
squid: Buffer over-read in the HTTP Message processing feature (CVE-2023-49285)
squid: Incorrect Check of Function Return Value In Helper Process management (CVE-2023-49286)
squid: denial of service in HTTP request parsing (CVE-2023-50269)
Bug Fix(es):
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 9 | s390x | squid-debuginfo | < 5.2-1.el9_0.4 | squid-debuginfo-5.2-1.el9_0.4.s390x.rpm |
RedHat | 9 | s390x | squid-debugsource | < 5.2-1.el9_0.4 | squid-debugsource-5.2-1.el9_0.4.s390x.rpm |
RedHat | 9 | aarch64 | squid-debuginfo | < 5.2-1.el9_0.4 | squid-debuginfo-5.2-1.el9_0.4.aarch64.rpm |
RedHat | 9 | aarch64 | squid | < 5.2-1.el9_0.4 | squid-5.2-1.el9_0.4.aarch64.rpm |
RedHat | 9 | s390x | squid | < 5.2-1.el9_0.4 | squid-5.2-1.el9_0.4.s390x.rpm |
RedHat | 9 | aarch64 | squid-debugsource | < 5.2-1.el9_0.4 | squid-debugsource-5.2-1.el9_0.4.aarch64.rpm |
RedHat | 9 | ppc64le | squid-debuginfo | < 5.2-1.el9_0.4 | squid-debuginfo-5.2-1.el9_0.4.ppc64le.rpm |
RedHat | 9 | ppc64le | squid-debugsource | < 5.2-1.el9_0.4 | squid-debugsource-5.2-1.el9_0.4.ppc64le.rpm |
RedHat | 9 | x86_64 | squid-debuginfo | < 5.2-1.el9_0.4 | squid-debuginfo-5.2-1.el9_0.4.x86_64.rpm |
RedHat | 9 | x86_64 | squid-debugsource | < 5.2-1.el9_0.4 | squid-debugsource-5.2-1.el9_0.4.x86_64.rpm |
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
7.4 High
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.7%