Количество 14
Количество 14
CVE-2020-11945
An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials).
CVE-2020-11945
An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials).
CVE-2020-11945
An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials).
CVE-2020-11945
An issue was discovered in Squid before 5.0.2. A remote attacker can r ...
GHSA-82gh-fr9f-867h
An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials).
BDU:2021-01723
Уязвимость механизма хранения nonce дайджест-аутентификации прокси-сервера Squid, связанная с целочисленным переполнением значения, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
RLSA-2020:2041
Important: squid:4 security update
ELSA-2020-2041
ELSA-2020-2041: squid:4 security update (IMPORTANT)
ELSA-2020-2040
ELSA-2020-2040: squid security update (IMPORTANT)
SUSE-SU-2020:1227-1
Security update for squid
openSUSE-SU-2020:0623-1
Security update for squid
SUSE-SU-2020:1156-1
Security update for squid
SUSE-SU-2020:1134-1
Security update for squid
SUSE-SU-2020:14460-1
Security update for squid3
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11945 An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials). | CVSS3: 9.8 | 34% Средний | около 5 лет назад |
 | CVE-2020-11945 An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials). | CVSS3: 8.1 | 34% Средний | около 5 лет назад |
 | CVE-2020-11945 An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials). | CVSS3: 9.8 | 34% Средний | около 5 лет назад |
| CVE-2020-11945 An issue was discovered in Squid before 5.0.2. A remote attacker can r ... | CVSS3: 9.8 | 34% Средний | около 5 лет назад |
| GHSA-82gh-fr9f-867h An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the attacker can overflow the nonce reference counter (a short integer). Remote code execution may occur if the pooled token credentials are freed (instead of replayed as valid credentials). | 34% Средний | около 3 лет назад | |
 | BDU:2021-01723 Уязвимость механизма хранения nonce дайджест-аутентификации прокси-сервера Squid, связанная с целочисленным переполнением значения, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 9.8 | 34% Средний | около 5 лет назад |
 | RLSA-2020:2041 Important: squid:4 security update | около 5 лет назад | ||
| ELSA-2020-2041 ELSA-2020-2041: squid:4 security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-2040 ELSA-2020-2040: squid security update (IMPORTANT) | около 5 лет назад | ||
 | SUSE-SU-2020:1227-1 Security update for squid | около 5 лет назад | ||
| openSUSE-SU-2020:0623-1 Security update for squid | около 5 лет назад | ||
| SUSE-SU-2020:1156-1 Security update for squid | около 5 лет назад | ||
| SUSE-SU-2020:1134-1 Security update for squid | около 5 лет назад | ||
| SUSE-SU-2020:14460-1 Security update for squid3 | почти 5 лет назад |
Уязвимостей на страницу