Vulnerabilities

CVE-2026-34475

by Fred · 27/03/2026

Varnish Cache before 8.0.1 and Varnish Enterprise before 6.0.16r12, in certain unchecked req.url scenarios, mishandle URLs with a path of / for HTTP/1.1, potentially leading to cache poisoning or authentication bypass.

More information : https://vinyl-cache.org/security/VSV00018.html

Similar

Tags: Cybersecurity Alert