CVE-2020-25097
published 2021-03-19CVE-2020-25097: An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request…
PriorityP356high8.6CVSS 3.1
AVNACLPRNUINSCCHINAN
EPSS
8.16%
94.1th percentile
An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | squid | < squid 4.13-8 (bookworm) | squid 4.13-8 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| squid-cache | squid | >= 2.0 < 4.14 | 4.14 |
| squid-cache | squid | >= 5.0.1 < 5.0.5 | 5.0.5 |
| squid | squid | >= 0 < 4.13-8 | 4.13-8 |
| squid | squid | >= 0 < 4.13-8 | 4.13-8 |
| squid | squid | >= 0 < 4.13-8 | 4.13-8 |
| squid | squid | >= 0 < 4.13-8 | 4.13-8 |
| squid | squid | >= 0 < 4.10-1ubuntu1.3 | 4.10-1ubuntu1.3 |
CVSS provenance
nvdv3.18.6HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv8.8HIGH
vendor_ubuntu9.9CRITICAL
vendor_debian8.6HIGH
vendor_redhat8.6HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
squid, squid3 vulnerabilities
osv·2021-03-29·CVSS 8.8
CVE-2020-15049 [HIGH] squid, squid3 vulnerabilities
squid, squid3 vulnerabilities
Alex Rousskov and Amit Klein discovered that Squid incorrectly handled
certain Content-Length headers. A remote attacker could possibly use this
issue to perform an HTTP request smuggling attack, resulting in cache
poisoning. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-15049)
Jianjun Chen discovered that Squid incorrectly validated certain input. A
remote attacker could use this issue to perform HTTP Request Smuggling and
possibly access services forbidden by the security controls.
(CVE-2020-25097)
OSV
CVE-2020-25097: An issue was discovered in Squid through 4
osv·2021-03-19·CVSS 8.6
CVE-2020-25097 [HIGH] CVE-2020-25097: An issue was discovered in Squid through 4
An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings.
Ubuntu
Squid vulnerabilities
vendor_ubuntu·2021-03-29·CVSS 9.9
CVE-2020-25097 [CRITICAL] Squid vulnerabilities
Title: Squid vulnerabilities
Summary: Several security issues were fixed in Squid.
Alex Rousskov and Amit Klein discovered that Squid incorrectly handled
certain Content-Length headers. A remote attacker could possibly use this
issue to perform an HTTP request smuggling attack, resulting in cache
poisoning. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-15049)
Jianjun Chen discovered that Squid incorrectly validated certain input. A
remote attacker could use this issue to perform HTTP Request Smuggling and
possibly access services forbidden by the security controls.
(CVE-2020-25097)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
squid: improper input validation may allow a trusted client to perform HTTP request smuggling
vendor_redhat·2020-09-04·CVSS 8.6
CVE-2020-25097 [HIGH] CWE-444 squid: improper input validation may allow a trusted client to perform HTTP request smuggling
squid: improper input validation may allow a trusted client to perform HTTP request smuggling
An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings.
A flaw was found in squid. Due to improper validation while parsing the request URI, squid is vulnerable to HTTP request smuggling. This issue could allow a trusted client to perform an HTTP request smuggling attack and access services otherwise forbidden by squid. The highest threat from this vulnerability is to data confidentiality.
Statement: This flaw is not tied to a specific proxy type (e.g., forward
Debian
CVE-2020-25097: squid - An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to impr...
vendor_debian·2020·CVSS 8.6
CVE-2020-25097 [HIGH] CVE-2020-25097: squid - An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to impr...
An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings.
Scope: local
bookworm: resolved (fixed in 4.13-8)
bullseye: resolved (fixed in 4.13-8)
forky: resolved (fixed in 4.13-8)
sid: resolved (fixed in 4.13-8)
trixie: resolved (fixed in 4.13-8)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.squid-cache.org/Versions/v4/changesets/SQUID-2020_11.patchhttp://www.squid-cache.org/Versions/v5/changesets/SQUID-2020_11.patchhttps://github.com/squid-cache/squid/security/advisories/GHSA-jvf6-h9gj-pmj6https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJMDRVV677AJL4BZAOLCT5LMFCGBZTC2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBXFWKIGXPERDVQXG556LLPUOCMQGERC/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3RYBDMJCPYGOSURWDR3WJTE474UFT77/https://security.gentoo.org/glsa/202105-14https://security.netapp.com/advisory/ntap-20210727-0010/https://www.debian.org/security/2021/dsa-4873http://www.squid-cache.org/Versions/v4/changesets/SQUID-2020_11.patchhttp://www.squid-cache.org/Versions/v5/changesets/SQUID-2020_11.patchhttps://github.com/squid-cache/squid/security/advisories/GHSA-jvf6-h9gj-pmj6https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJMDRVV677AJL4BZAOLCT5LMFCGBZTC2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBXFWKIGXPERDVQXG556LLPUOCMQGERC/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3RYBDMJCPYGOSURWDR3WJTE474UFT77/https://security.gentoo.org/glsa/202105-14https://security.netapp.com/advisory/ntap-20210727-0010/https://www.debian.org/security/2021/dsa-4873
2021-03-19
Published