[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

254492

 
 

909

 
 

198541

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS2SQUID4-2023-006 --- squid

ID: oval:org.secpod.oval:def:1701778Date: (C)2023-10-10   (M)2024-02-08
Class: PATCHFamily: unix




A flaw was found in squid. Due to incorrect data validation, a HTTP Request Smuggling attack against HTTP and HTTPS traffic is possible leading to cache poisoning. The highest threat from this vulnerability is to data confidentiality and integrity. A flaw was found in squid. Due to incorrect data validation, an HTTP Request Splitting attack against HTTP and HTTPS traffic is possible leading to cache poisoning. The highest threat from this vulnerability is to data confidentiality and integrity. A flaw was found in squid. A denial of service attack is possible due to an improper input validation. The highest threat from this vulnerability is to system availability

Platform:
Amazon Linux 2
Product:
squid
Reference:
ALAS2SQUID4-2023-006
CVE-2020-15810
CVE-2020-15811
CVE-2020-24606
CVE    3
CVE-2020-15810
CVE-2020-15811
CVE-2020-24606

© SecPod Technologies