Known Vulnerabilities for products from Squid
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Squid".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33526 | Not Provided | 2026-03-26 | 2026-03-26 | |
| CVE-2026-33515 | Not Provided | 2026-03-26 | 2026-03-26 | |
| CVE-2009-0801 | Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allow... | 5.4 - MEDIUM | 2009-03-04 | 2009-06-18 |
| CVE-2009-0478 | Squid 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 allows remote attackers to cause a denial of service via an... | 5 - MEDIUM | 2009-02-08 | 2018-10-11 |
| CVE-2008-1612 | The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via... | 4.3 - MEDIUM | 2008-04-01 | 2023-11-07 |
| CVE-2007-6239 | The "cache update reply processing" functionality in Squid 2.x before 2.6.STABLE17 and Squid 3.0 allows remote attackers to c... | 5 - MEDIUM | 2007-12-04 | 2017-09-29 |
| CVE-2007-1560 | The clientProcessRequest() function in src/client_side.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a ... | 5 - MEDIUM | 2007-03-21 | 2017-10-11 |
| CVE-2007-0248 | The aclMatchExternal function in Squid before 2.6.STABLE7 allows remote attackers to cause a denial of service (crash) by cau... | 5 - MEDIUM | 2007-01-16 | 2017-07-29 |
| CVE-2007-0247 | squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FT... | 5 - MEDIUM | 2007-01-16 | 2017-07-29 |
| CVE-2005-3322 | Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (... | 5 - MEDIUM | 2005-10-27 | 2008-09-10 |
| CVE-2005-3258 | The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of ser... | 5 - MEDIUM | 2005-10-20 | 2011-03-08 |
| CVE-2005-2917 | Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, whi... | 5 - MEDIUM | 2005-09-30 | 2017-10-11 |
| CVE-2005-2796 | The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of servi... | 5 - MEDIUM | 2005-09-07 | 2017-10-11 |
| CVE-2005-2794 | store.c in Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (crash) via certain aborted re... | 5 - MEDIUM | 2005-09-07 | 2017-10-11 |
| CVE-2005-1711 | Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memo... | 7.5 - HIGH | 2005-05-24 | 2008-09-05 |
| CVE-2005-1519 | Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allow... | 6.4 - MEDIUM | 2005-05-11 | 2017-10-11 |
| CVE-2005-1345 | Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access co... | 7.5 - HIGH | 2005-05-02 | 2017-10-11 |
| CVE-2005-0718 | Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (segmentation fault) by aborting the conne... | 5 - MEDIUM | 2005-04-14 | 2018-10-03 |
| CVE-2005-0626 | Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies i... | 2.6 - LOW | 2005-03-08 | 2018-10-03 |
| CVE-2005-0446 | Squid 2.5.STABLE8 and earlier allows remote attackers to cause a denial of service (crash) via certain DNS responses regardin... | 5 - MEDIUM | 2005-05-02 | 2017-10-11 |