Description

An issue was discovered in Squid 4.x before 4.15 and 5.x before 5.0.6. If a remote server sends a certain response header over HTTP or HTTPS, there is a denial of service. This header can plausibly occur in benign network traffic.

Remediation

References

CVE-2021-28662

Related Vulnerabilities

Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.2)

MySQL CVE-2012-3160 Vulnerability (CVE-2012-3160)

Drupal Core 7.x Arbitrary File Overwrite (7.0 - 7.77)

WordPress Plugin Rise Blocks-A Complete Gutenberg Page Builder Unspecified Vulnerability (1.0.0)

WordPress Plugin WP Maintenance Cross-Site Request Forgery (5.0.5)

Severity

Medium

Classification

CVE-2021-28662 CWE-116 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities