CVE-2026-33515— Squid has issues in ICP message handling
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-33515
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Squid has issues in ICP message handling
Source: NVD (National Vulnerability Database)
Vulnerability Description
Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. This problem allows a remote attacker to receive small amounts of memory potentially containing sensitive information when responding with errors to invalid ICP requests. This attack is limited to Squid deployments that explicitly enable ICP support (i.e. configure non-zero `icp_port`). This problem cannot be mitigated by denying ICP queries using `icp_access` rules. Version 7.5 contains a patch.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)
Vulnerability Title
Squid 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Squid是Squid开源的一套代理服务器和Web缓存服务器软件。该软件提供缓存万维网、过滤流量、代理上网等功能。 Squid 7.5之前版本存在安全漏洞,该漏洞源于输入验证不当,可能导致处理ICP流量时发生越界读取。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| squid-cache | squid | < 7.5 | - |
II. Public POCs for CVE-2026-33515
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-33515
请登录查看更多情报信息。
Same Patch Batch · squid-cache · 2026-03-26 · 3 CVEs total
| CVE-2026-32748 | Squid has Denial of Service in ICP Response handling | |
| CVE-2026-33526 | Squid vulnerable to Denial of Service in ICP Request handling |
IV. Related Vulnerabilities
Same product: squid
- CVE-2026-33526
Squid vulnerable to Denial of Service in ICP Request handlin - CVE-2026-32748
Squid has Denial of Service in ICP Response handling - CVE-2025-62168
Squid vulnerable to information disclosure via authenticatio - CVE-2025-54574
Squid's URN Handling can lead to Buffer Overflow - CVE-2024-45802
Squid Denial of Service
Same vendor: squid-cache
- CVE-2026-33526
Squid vulnerable to Denial of Service in ICP Request handlin - CVE-2026-32748
Squid has Denial of Service in ICP Response handling - CVE-2025-62168
Squid vulnerable to information disclosure via authenticatio - CVE-2025-54574
Squid's URN Handling can lead to Buffer Overflow - CVE-2024-45802
Squid Denial of Service
Same weakness: CWE-125
- CVE-2026-8177
XML::LibXML versions through 2.0210 for Perl read out-of-bou - CVE-2026-6104
Global buffer over-read in mb_convert_encoding() with attack - CVE-2026-7258
Out-of-bounds read in urldecode() on NetBSD - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-3508
ASUS System Control Interface 缓冲区错误漏洞
V. Comments for CVE-2026-33515
No comments yet