CVE-2020-15810 — HTTP Request Smuggling in Squid

CWE-444 — HTTP Request Smuggling11 documents7 sources

Severity

6.5MEDIUMNVD

OSV8.8

EPSS

0.2%

top 56.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Squid Squid-cache Squid Canonical Ubuntu Linux +3 more

Timeline

PublishedSep 2

Latest updateSep 28

Description

An issue was discovered in Squid before 4.13 and 5.x before 5.0.4. Due to incorrect data validation, HTTP Request Smuggling attacks may succeed against HTTP and HTTPS traffic. This leads to cache poisoning. This allows any client, including browser scripts, to bypass local security and poison the proxy cache and any downstream caches with content from an arbitrary source. When configured for relaxed header parsing (the default), Squid relays headers containing whitespace characters to upstream s…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

▶NVDsquid-cache/squid5.0 — 5.0.4+1

▶Debiansquid/squid< 4.13-1+3

▶Ubuntusquid/squid< 4.10-1ubuntu1.2

▶NVDopensuse/leap15.1, 15.2+1

Also affects: Debian Linux 10.0, 9.0, Fedora 31, 32, 33, Ubuntu Linux 16.04, 18.04, 20.04

🔴Vulnerability Details

OSV

squid3 vulnerabilities↗2020-09-28

▶

CVEList

CVE-2020-15810: An issue was discovered in Squid before 4↗2020-09-02

▶

OSV

CVE-2020-15810: An issue was discovered in Squid before 4↗2020-09-02

▶

OSV

squid vulnerabilities↗2020-08-27

▶

📋Vendor Advisories

Ubuntu

Squid vulnerabilities↗2020-09-28

▶

Ubuntu

Squid vulnerabilities↗2020-08-27

▶

Red Hat

squid: HTTP Request Smuggling could result in cache poisoning↗2020-08-23

▶

Debian

CVE-2020-15810: squid - An issue was discovered in Squid before 4.13 and 5.x before 5.0.4. Due to incorr...↗2020

▶

💬Community

Bugzilla

CVE-2020-15810 squid: HTTP Request Smuggling could result in cache poisoning [fedora-all]↗2020-08-24

▶

Bugzilla

CVE-2020-15810 squid: HTTP Request Smuggling could result in cache poisoning↗2020-08-24

▶