Vulnerabilities

CVE-2020-25097

by Fred · 19/03/2021

An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings.

Date published : 2021-03-19

https://security.netapp.com/advisory/ntap-20210727-0010/

https://www.debian.org/security/2021/dsa-4873

Similar

Tags: Cybersecurity Alert