Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2023-46848

Published: 03/11/2023 Updated: 14/12/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Squid

Vulnerability Summary

Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.

Vulnerable Product Search on Vulmon Subscribe to Product

squid-cache squid

redhat enterprise linux 9.0

redhat enterprise linux server aus 9.2

redhat enterprise linux eus 9.2

redhat enterprise linux server tus 9.2

Vendor Advisories

Debian CVElist Bug Report Logs: squid: CVE-2023-46848: SQUID-2023:5 Denial of Service in FTP
Debian Bug report logs - #1055251 squid: CVE-2023-46848: SQUID-2023:5 Denial of Service in FTP Package: squid; Maintainer for squid is Luigi Gangitano <luigi@debianorg>; Source for squid is src:squid (PTS, buildd, popcon) Reported by: Andras Korn <korn-debbugs@elanrulezorg> Date: Wed, 25 Oct 2023 10:39:02 UTC Sev ...
Red Hat: Critical: squid security update
Synopsis Critical: squid security update Type/Severity Security Advisory: Critical Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for squid is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Security has rated this ...
Red Hat: Critical: squid security update
Synopsis Critical: squid security update Type / Sévérité Security Advisory: Critical Analyse des correctifs dans Red Hat Insights Identifiez et remédiez aux systèmes concernés par cette alerte Voir les systèmes concernés Sujet An update for squid is now available for Red Hat Enterprise Linux 9Red Hat Product Security has r ...
Red Hat: Critical: squid security update
Synopsis Critical: squid security update Type/Severity Security Advisory: Critical Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for squid is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a securi ...

References

CWE-681https://access.redhat.com/errata/RHSA-2023:6266https://access.redhat.com/security/cve/CVE-2023-46848https://access.redhat.com/errata/RHSA-2023:6268https://github.com/squid-cache/squid/security/advisories/GHSA-2g3c-pg7q-g59whttps://bugzilla.redhat.com/show_bug.cgi?id=2245919https://access.redhat.com/errata/RHSA-2023:6748https://security.netapp.com/advisory/ntap-20231214-0005/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055251https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook