CVE-2023-49286

CVSS v3.1

8.6

High

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Squid versions prior to 6.5

Description The issue is related to insufficient checking of exceptional states in the Squid proxy server, which can be exploited by a remote attacker to cause a denial of service. Squid is a caching proxy for the Web that supports HTTP, HTTPS, FTP, and more. The vulnerability is due to an incorrect check of the function return value, making Squid vulnerable to a denial of service attack against its helper process management.

Recommendations For Squid versions prior to 6.5, users are advised to upgrade to version 6.5 to fix the bug. There are no known workarounds for this vulnerability. As a temporary workaround, consider disabling the helper process management until a patch is available. Restrict access to the vulnerable Squid proxy server to minimize the risk of exploitation.

Exploit

Fix

DoS

Assertion Failure

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617CWE-253CWE-754

Related Identifiers

ALSA-2024:0046

ALSA-2024:0071

ALT-PU-2024-9370

AZL-32074

BDU:2023-08580

CESA-2024_0046

CVE-2023-49286

DLA-3709-1

DSA-5637-1

GHSA-XGGX-9329-3C27

MGASA-2024-0102

OESA-2023-1932

OPENSUSE-SU-2023_4698-1

OPENSUSE-SU-2024:13631-1

RHSA-2024:0046

RHSA-2024:0071

RHSA-2024:0072

RHSA-2024:0397

RHSA-2024:0771

RHSA-2024:0772

RHSA-2024:0773

RHSA-2024:1153

RHSA-2024:1787

RHSA-2024_0046

RHSA-2024_0071

RHSA-2024_1787

RLSA-2024:0046

ROSA-SA-2024-2479

SUSE-SU-2023:4698-1

SUSE-SU-2023:4724-1

SUSE-SU-2023:4825-1

USN-6594-1

USN-6857-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Squid

Squid Cache

Suse

Ubuntu

CVE-2023-49286

Weakness Enumeration

Related Identifiers

Affected Products

References · 92