Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2023:6266 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2023:6268 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2023:6748 | Third Party Advisory |
https://access.redhat.com/security/cve/CVE-2023-46848 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2245919 | Issue Tracking |
https://github.com/squid-cache/squid/security/advisories/GHSA-2g3c-pg7q-g59w | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20231214-0005/ |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-11-03T07:58:05.613Z
Updated: 2024-05-01T20:21:15.525Z
Reserved: 2023-10-27T08:36:38.158Z
Link: CVE-2023-46848
JSON object: View
NVD Information
Status : Modified
Published: 2023-11-03T08:15:08.117
Modified: 2023-12-14T10:15:08.390
Link: CVE-2023-46848
JSON object: View
Redhat Information
No data.
CWE