Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-19131

Опубликовано: 09 нояб. 2018
Источник: debian
EPSS Средний

Описание

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
squidfixed4.4-1package
squid3removedpackage

Примечания

  • http://www.squid-cache.org/Advisories/SQUID-2018_4.txt

  • Squid in Debian builds without TLS support

EPSS

Процентиль: 93%
0.10782
Средний

Связанные уязвимости

ubuntu логотип

CVE-2018-19131

CVSS3: 6.1
ubuntu
около 7 лет назад

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

redhat логотип

CVE-2018-19131

CVSS3: 5.6
redhat
больше 7 лет назад

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

nvd логотип

CVE-2018-19131

CVSS3: 6.1
nvd
около 7 лет назад

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

suse-cvrf логотип

SUSE-SU-2018:3790-1

suse-cvrf
около 7 лет назад

Security update for squid3

github логотип

GHSA-jr78-3r97-gpxf

CVSS3: 6.1
github
больше 3 лет назад

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

EPSS

Процентиль: 93%
0.10782
Средний