vulnerability

Red Hat: CVE-2019-18860: CVE-2019-18860 squid: Mishandled HTML in the host parameter to cachemgr.cgi results in insecure behaviour (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	2020-03-20	2020-11-05	2024-11-27

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

2020-03-20

Added

2020-11-05

Modified

2024-11-27

Description

Squid before 4.9, when certain web browsers are used, mishandles HTML in the host (aka hostname) parameter to cachemgr.cgi.

Solution(s)

redhat-upgrade-libecapredhat-upgrade-libecap-debuginforedhat-upgrade-libecap-debugsourceredhat-upgrade-libecap-develredhat-upgrade-squidredhat-upgrade-squid-debuginforedhat-upgrade-squid-debugsource

References

NVD-CVE-2019-18860
REDHAT-RHSA-2020:4743

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today