CVE-2023-46847

Published November 3rd, 2023

View on NVD ↗

CVSS v3

8.6

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.

squid-cache/squid

Squid Web Proxy Cache - Source Code

GitHub

2.98K