CVE-2019-18677 vulnerability in Squid Cache and Other Products
Published on November 26, 2019

An issue was discovered in Squid 3.x and 4.x through 4.8 when the append_domain setting is used (because the appended characters do not properly interact with hostname length restrictions). Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be delivered to.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-18677

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-18677 are published in these products:

Squid Cache Squid

Canonical Ubuntu Linux

Fedora Project Fedora

Exploit Probability

EPSS

4.21%

Percentile

88.58%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-18677 vulnerability in Squid Cache and Other ProductsPublished on November 26, 2019

Products Associated with CVE-2019-18677

Exploit Probability

CVE-2019-18677 vulnerability in Squid Cache and Other Products
Published on November 26, 2019