Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2016-10003 - Vulnerability Database
Squid

Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2016-10003

High
Reference: CVE-2016-10003
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-10003
Title: Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22 and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients.