Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access permissions.
History

Tue, 26 Aug 2025 17:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-787
CPEs cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*

Mon, 04 Aug 2025 09:30:00 +0000

Type Values Removed Values Added
First Time appeared Squid-cache
Squid-cache squid
Vendors & Products Squid-cache
Squid-cache squid

Sat, 02 Aug 2025 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

threat_severity

Important


Fri, 01 Aug 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 01 Aug 2025 18:15:00 +0000

Type Values Removed Values Added
Description Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access permissions.
Title Squid's URN Handling can lead to Buffer Overflow
Weaknesses CWE-122
References
Metrics cvssV3_1

{'score': 9.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2025-08-01T18:43:46.346Z

Reserved: 2025-07-25T16:19:16.091Z

Link: CVE-2025-54574

cve-icon Vulnrichment

Updated: 2025-08-01T18:43:38.829Z

cve-icon NVD

Status : Analyzed

Published: 2025-08-01T18:15:55.390

Modified: 2025-08-26T16:55:12.823

Link: CVE-2025-54574

cve-icon Redhat

Severity : Important

Publid Date: 2025-08-01T18:02:19Z

Links: CVE-2025-54574 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2025-08-04T08:58:49Z