CVE-2024-37894

Squid vulnerable to heap corruption in ESI assign

Severity Score

6.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack.

Squid es un proxy de almacenamiento en caché para la Web que admite HTTP, HTTPS, FTP y más. Debido a un error de escritura fuera de los límites al asignar variables ESI, Squid es susceptible a un error de corrupción de memoria. Este error puede provocar un ataque de denegación de servicio.

A flaw was found in Squid. An out-of-bounds write can be triggered when an Edge Side Includes (ESI) variable is assigned to a value not in the standard ASCII range, for example, multi-byte characters. This flaw allows a trusted server to crash Squid while processing an ESI response content, resulting in a denial of service.

*Credits: N/A

CVSS Scores

GitHubv3.1 6.3

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-06-10 CVE Reserved
2024-06-25 CVE Published
2024-07-20 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-787: Out-of-bounds Write

CAPEC

References (5)

URL	Tag	Source
https://github.com/squid-cache/squid/commit/f411fe7d75197852f0e5ee85027a06d58dd8df4c.patch	X_refsource_misc
https://github.com/squid-cache/squid/security/advisories/GHSA-wgvf-q977-9xjg	X_refsource_confirm
https://security.netapp.com/advisory/ntap-20240719-0001

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-37894	2024-08-27
https://bugzilla.redhat.com/show_bug.cgi?id=2294353	2024-08-27

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Squid-cache Search vendor "Squid-cache"		Squid Search vendor "Squid-cache" for product "Squid"				>= 3.0.0 <= 3.5.28 Search vendor "Squid-cache" for product "Squid" and version " >= 3.0.0 <= 3.5.28"		en		Affected
Squid-cache Search vendor "Squid-cache"		Squid Search vendor "Squid-cache" for product "Squid"				>= 4.0 <= 4.16 Search vendor "Squid-cache" for product "Squid" and version " >= 4.0 <= 4.16"		en		Affected
Squid-cache Search vendor "Squid-cache"		Squid Search vendor "Squid-cache" for product "Squid"				>= 5.0 <= 5.9 Search vendor "Squid-cache" for product "Squid" and version " >= 5.0 <= 5.9"		en		Affected
Squid-cache Search vendor "Squid-cache"		Squid Search vendor "Squid-cache" for product "Squid"				>= 6.0 <= 6.9 Search vendor "Squid-cache" for product "Squid" and version " >= 6.0 <= 6.9"		en		Affected