Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2021-46784
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-17 Jul, 2022 | 22:15
Updated At-22 Oct, 2023 | 00:15

In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.16.5MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CPE Matches
Squid Cache
squid-cache
>>squid>>Versions from 3.0(inclusive) to 3.5.28(inclusive)
cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*
Squid Cache
squid-cache
>>squid>>Versions from 4.0(inclusive) to 4.17(inclusive)
cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*
Squid Cache
squid-cache
>>squid>>Versions from 5.0(inclusive) to 5.6(exclusive)
cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*
Debian GNU/Linux
debian
>>debian_linux>>10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Debian GNU/Linux
debian
>>debian_linux>>11.0
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
Debian GNU/Linux
debian
>>debian_linux>>12.0
cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-617Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.openwall.com/lists/oss-security/2023/10/13/1cve@mitre.org
N/A
http://www.openwall.com/lists/oss-security/2023/10/13/10cve@mitre.org
N/A
http://www.openwall.com/lists/oss-security/2023/10/21/1cve@mitre.org
N/A
http://www.squid-cache.org/Versions/v4/changesets/SQUID-2021_7.patchcve@mitre.org
Broken Link
http://www.squid-cache.org/Versions/v5/changesets/SQUID-2021_7.patchcve@mitre.org
Patch
Vendor Advisory
https://github.com/squid-cache/squid/commit/5e2ea2b13bd98f53e29964ca26bb0d602a8a12b9cve@mitre.org
Patch
Third Party Advisory
https://github.com/squid-cache/squid/security/advisories/GHSA-f5cp-6rh3-284wcve@mitre.org
Mitigation
Patch
Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2021-46784cve@mitre.org
Third Party Advisory
https://security.netapp.com/advisory/ntap-20221223-0007/cve@mitre.org
Third Party Advisory
Change History
0Changes found
Details not found