CVE-2024-23638
SQUID-2023:11 Denial of Service in Cache ManagerSquid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pages for Client Manager reports. Squid older than 5.0.5 have not been tested and should be assumed to be vulnerable. All Squid-5.x up to and including 5.9 are vulnerable. All Squid-6.x up to and including 6.5 are vulnerable. This bug is fixed by Squid version 6.6. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. As a workaround, prevent access to Cache Manager using Squid's main access control: `http_access deny manager`.
We have discovered 9,992 live websites that are affected by CVE-2024-23638.
Affected Software
| Product |  squid |
| Category | Cache Tools |
| Vulnerable Domains | 9,992 live websites (98.51% of squid install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 62 versions ( 91.18% of all versions) |
Common Weakness Enumeration
CWE-825 Expired Pointer DereferenceDetails
- Published - Jan 23, 2024
- Updated - Feb 13, 2025
CWE
CVE References
CWE References
CVE-2024-23638 usage by Country
 United States | 1,080 websites |
 Germany | 4,338 websites |
 Japan | 1,029 websites |
 GB | 572 websites |
 China | 442 websites |
 France | 347 websites |
 Poland | 315 websites |
 Spain | 278 websites |
 Czech Republic | 152 websites |
 Italy | 147 websites |
CVE-2024-23638 usage by TLD
| .de | 2,742 websites |
| .com | 2,619 websites |
| .co.uk | 413 websites |
| .org | 408 websites |
| .net | 377 websites |
| .fr | 310 websites |
| .es | 231 websites |
| .pl | 203 websites |
| .at | 179 websites |
| .jp | 179 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-23638
Top websites that are affected by CVE-2024-23638. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.*********.net | GB | *,*** | |
| ***.org | United States | *,*** | |
| *********.net | GB | *,*** | |
| *****.edu | United States | *,*** | |
| *********.**.uk | GB | **,*** | |
| *****.******.********.edu | United States | **,*** | |
| *****.org | France | **,*** | |
| ****.*********.net | GB | **,*** | |
| *****.*****.ca |  Canada | **,*** | |
| *******.**.jp | United States | **,*** |
FAQ
CVE-2024-23638 is Expired Pointer Dereference in squid
A total of 9,992 websites have been identified as vulnerable to CVE-2024-23638, discovered through global website indexing conducted by WebTechSurvey.
squid is susceptible to CVE-2024-23638 vulnerability.
squid versions before 6.6 are vulnerable to CVE-2024-23638.
Version 6.6 of squid addresses the CVE-2024-23638 security vulnerability.
References
- https://github.com/squid-cache/squid/security/advisories/GHSA-j49p-553x-48rx
- https://github.com/squid-cache/squid/commit/290ae202883ac28a48867079c2fb34c40efd382b
- https://github.com/squid-cache/squid/commit/e8118a7381213f5cfcdeb4cec1d2d854bfd261c8
- https://megamansec.github.io/Squid-Security-Audit/stream-assert.html
- http://www.squid-cache.org/Versions/v5/SQUID-2023_11.patch
- http://www.squid-cache.org/Versions/v6/SQUID-2023_11.patch
- https://security.netapp.com/advisory/ntap-20240208-0010/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/7R4KPSO3MQT3KAOZV7LC2GG3CYMCGK7H/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XWQHRDRHDM5PQTU6BHH4C5KGL37X6TVI/