Vulnerabilities (CVE)

Filtered by vendor Squid Subscribe
Filtered by product Squid Web Proxy
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-1030 6 Caldera, Immunix, Mandrakesoft and 3 more 8 Openlinux Server, Immunix, Mandrake Linux and 5 more 2024-11-20 7.5 HIGH N/A
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
CVE-2001-0843 1 Squid 1 Squid Web Proxy 2024-11-20 5.0 MEDIUM N/A
Squid proxy server 2.4 and earlier allows remote attackers to cause a denial of service (crash) via a mkdir-only FTP PUT request.