Description

An issue was discovered in Squid before 4.10. Due to incorrect input validation, it can interpret crafted HTTP requests in unexpected ways to access server resources prohibited by earlier security filters.

Remediation

References

CVE-2020-8449

Related Vulnerabilities

Oracle HTTP Server Other Vulnerability (CVE-2020-29506)

WordPress Plugin UpdraftPlus WordPress Backup Security Bypass (1.22.1)

Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6417)

WordPress Plugin Swipe Checkout for Jigoshop Cross-Site Scripting (3.1.0)

Apache Tomcat Improper Authentication Vulnerability (CVE-2026-34500)

Severity

High

Classification

CVE-2020-8449 CWE-668 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities