Lucene search
Veracode Vulnerability DatabaseVERACODE:45494HistoryFeb 15, 2024 - 7:37 a.m.
Denial Of Service (DoS)
2024-02-1507:37:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
denial of service
vulnerability
libsquid.so
http header parsing
remote attackers
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.9
Confidence
High
EPSS
0
Percentile
15.5%
libsquid.so is vulnerable to Denial Of Service (DoS). The vulnerability is due to HTTP header parsing, allowing remote attackers to perform Denial of Service attacks by sending oversized headers.
Related
vulnrichment
vulnrichment
CVE-2024-25617 Denial of Service in HTTP Header parser in squid proxy
2024-02-14 20:55:52
redhat
redhat
(RHSA-2024:1062) Important: squid:4 security update
2024-03-01 07:59:37
(RHSA-2024:1066) Important: squid:4 security update
2024-03-04 08:55:06
(RHSA-2024:1184) Important: squid security update
2024-03-06 00:55:36
nessus
nessus
RHEL 8 : squid:4 (RHSA-2024:1066)
2024-03-05 00:00:00
RHEL 8 : squid:4 (RHSA-2024:1062)
2024-03-01 00:00:00
RHEL 9 : squid (RHSA-2024:1184)
2024-03-06 00:00:00
debiancve
debiancve
CVE-2024-25617
2024-02-14 21:15:08
nvd
nvd
CVE-2024-25617
2024-02-14 21:15:08
redos
redos
ROS-20240812-07
2024-08-12 00:00:00
osv
osv
CVE-2024-25617
2024-02-14 21:15:08
squid-6.8-1.1 on GA media
2024-06-15 00:00:00
Important: squid:4 security update
2024-03-19 00:00:00
openvas
openvas
Squid DoS Vulnerability (GHSA-h5x6-w8mv-xfpr, SQUID-2024:2)
2023-10-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1115-1)
2024-05-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1114-1)
2024-05-07 00:00:00
cloudlinux
cloudlinux
squid: Fix of CVE-2024-25617
2024-03-26 22:20:18
ubuntucve
ubuntucve
CVE-2024-25617
2024-02-14 00:00:00
cvelist
cvelist
CVE-2024-25617 Denial of Service in HTTP Header parser in squid proxy
2024-02-14 20:55:52
redhatcve
redhatcve
CVE-2024-25617
2024-02-15 06:58:53
cve
cve
CVE-2024-25617
2024-02-14 21:15:08
prion
prion
Design/Logic Flaw
2024-02-14 21:15:00
amazon
amazon
Medium: squid
2024-01-03 21:04:00
oraclelinux
oraclelinux
squid security update
2024-03-20 00:00:00
squid:4 security update
2024-03-21 00:00:00
squid security update
2024-04-11 00:00:00
almalinux
almalinux
Important: squid:4 security update
2024-03-19 00:00:00
Important: squid security update
2024-03-19 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0751
2024-04-18 00:00:00
ubuntu
ubuntu
Squid regression
2024-04-11 00:00:00
Squid vulnerability
2024-04-23 00:00:00
Squid vulnerabilities
2024-04-10 00:00:00
mageia
mageia
Updated squid packages fix security vulnerabilities
2024-03-31 06:27:58
debian
debian
[SECURITY] [DSA 5637-1] squid security update
2024-03-08 14:36:16
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.9
Confidence
High
EPSS
0
Percentile
15.5%
Related for VERACODE:45494