VDB
WID-SEC-W-2025-1696
WID-SEC-W-2025-1696
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Squid ist ein Open-Source Web Proxy Cache für Unix und Windows Plattformen. Die Software unterstützt Proxying und Caching von HTTP, FTP und anderen Protokollen, sowie SSL und Access Control Lists.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source Squid <6.4 | ||
| Oracle Linux | ||
| Debian Linux | ||
| Open Source Squid 6.4 | ||
| Red Hat Enterprise Linux |
Timeline
- Jul 31, 2025 CVE Published
- Sep 29, 2025 CVE Updated
- Apr 22, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1696.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1696 advisory
- https://github.com/squid-cache/squid/security/advisories/GHSA-w4gv-vw3f-29g3 url
- https://lists.debian.org/debian-security-announce/2025/msg00146.html url
- https://access.redhat.com/errata/RHSA-2025:14414 url
- https://lists.debian.org/debian-lts-announce/2025/09/msg00027.html url
- http://linux.oracle.com/errata/ELSA-2025-14414.html url