Описание
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| cosmic | not-affected | not built with --with-openssl |
| devel | not-affected | not built with --with-openssl |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | not built with --with-openssl |
| cosmic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [not built with --with-openssl]] |
| esm-infra/bionic | not-affected | not built with --with-openssl |
| esm-infra/xenial | not-affected | not built with --with-openssl |
| precise/esm | not-affected | not built with --with-openssl |
| trusty | not-affected | not built with --with-openssl |
| trusty/esm | DNE | trusty was not-affected [not built with --with-openssl] |
| upstream | needs-triage |
Показывать по
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S ...
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3