CVE-2025-54574

Critical CVSS: 9.3

Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access permissions.

Vendor

Squid-cache

Product

Squid

CWE

CWE-122

Yayın Tarihi

2025-08-01 18:15:55

Güncelleme

2025-11-05 17:15:43

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-122 Squid CRITICAL Squid-cache 2025

Referanslar

https://github.com/squid-cache/squid/commit/a27bf4b84da23594150c7a86a23435df0b35b988 https://github.com/squid-cache/squid/releases/tag/SQUID_6_4 https://github.com/squid-cache/squid/security/advisories/GHSA-w4gv-vw3f-29g3 http://www.openwall.com/lists/oss-security/2025/11/05/5 https://lists.debian.org/debian-lts-announce/2025/09/msg00027.html

Benzer Kayıtlar

Medium

CVE-2026-33515

Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out…

Critical

CVE-2026-33526

Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to Denial of…

High

CVE-2026-32748

Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetim…

Critical

CVE-2025-62168

Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credential…

Medium

CVE-2025-59362

Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.