Description

An issue was discovered in Squid before 4.10. Due to incorrect input validation, it can interpret crafted HTTP requests in unexpected ways to access server resources prohibited by earlier security filters.

Remediation

References

CVE-2020-8449

Related Vulnerabilities

WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.0.0)

Oracle Database Server CVE-2019-2749 Vulnerability (CVE-2019-2749)

Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11585)

WordPress Plugin WP CSV Unspecified Vulnerability (1.7.8.0)

WordPress Plugin LearnDash LMS Multiple Information Disclosure Vulnerabilities (4.10.2)

Severity

High

Classification

CVE-2020-8449 CWE-668 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities