Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-rv56-tjvg-bbbc

Summary Squid: Squid: Denial of Service via crafted ICP traffic

Aliases

alias	CVE-2026-32748

Fixed_packages

url	pkg:deb/debian/squid@7.5-1
purl	pkg:deb/debian/squid@7.5-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1

url	pkg:deb/debian/squid@7.5-1?distro=trixie
purl	pkg:deb/debian/squid@7.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/squid@4.13-10%2Bdeb11u3

purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2x42-wmes-2uen

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-7sua-wuyu-cqby

vulnerability	VCID-7xgk-cg81-yyht

vulnerability	VCID-b4wm-kgwv-nkhj

vulnerability	VCID-h4af-cyxg-juf8

vulnerability	VCID-j8vv-ysfd-a7c6

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

vulnerability	VCID-ssxr-73gq-kbaf

vulnerability	VCID-t3w4-62ms-9ybz

vulnerability	VCID-yhrb-q44p-c3bk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3

url pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-7sua-wuyu-cqby

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/squid@5.7-2%2Bdeb12u5

purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-7sua-wuyu-cqby

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5

url pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-7sua-wuyu-cqby

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/squid@6.13-2%2Bdeb13u1

purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1

url pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-pshb-b8z8-gqhm

vulnerability	VCID-qyjc-znbd-dub6

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1%3Fdistro=trixie

url pkg:rpm/redhat/squid@7:3.5.20-17.el7_9?arch=16

purl pkg:rpm/redhat/squid@7:3.5.20-17.el7_9?arch=16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:3.5.20-17.el7_9%3Farch=16

url pkg:rpm/redhat/squid@7:5.2-1.el9_0?arch=10

purl pkg:rpm/redhat/squid@7:5.2-1.el9_0?arch=10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:5.2-1.el9_0%3Farch=10

url pkg:rpm/redhat/squid@7:5.5-5.el9_2?arch=11

purl pkg:rpm/redhat/squid@7:5.5-5.el9_2?arch=11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:5.5-5.el9_2%3Farch=11

url pkg:rpm/redhat/squid@7:5.5-13.el9_4?arch=5

purl pkg:rpm/redhat/squid@7:5.5-13.el9_4?arch=5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:5.5-13.el9_4%3Farch=5

url pkg:rpm/redhat/squid@7:5.5-19.el9_6?arch=3

purl pkg:rpm/redhat/squid@7:5.5-19.el9_6?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:5.5-19.el9_6%3Farch=3

url pkg:rpm/redhat/squid@7:5.5-22.el9_7?arch=4

purl pkg:rpm/redhat/squid@7:5.5-22.el9_7?arch=4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:5.5-22.el9_7%3Farch=4

url pkg:rpm/redhat/squid@7:6.10-5.el10_0?arch=2

purl pkg:rpm/redhat/squid@7:6.10-5.el10_0?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:6.10-5.el10_0%3Farch=2

url pkg:rpm/redhat/squid@7:6.10-6.el10_1?arch=3

purl pkg:rpm/redhat/squid@7:6.10-6.el10_1?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tpw-u7cg-hqd7

vulnerability	VCID-rv56-tjvg-bbbc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/squid@7:6.10-6.el10_1%3Farch=3

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32748.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32748.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-32748

reference_id

reference_type

scores

value	0.0021
scoring_system	epss
scoring_elements	0.4348
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-32748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32748

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2451577
reference_id	2451577
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2451577

reference_url

https://github.com/squid-cache/squid/commit/703e07d25ca6fa11f52d20bf0bb879e22ab7481b

reference_id

703e07d25ca6fa11f52d20bf0bb879e22ab7481b

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:13Z/

url

https://github.com/squid-cache/squid/commit/703e07d25ca6fa11f52d20bf0bb879e22ab7481b

reference_url

https://github.com/squid-cache/squid/security/advisories/GHSA-f9p7-3jqg-hhvq

reference_id

GHSA-f9p7-3jqg-hhvq

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:13Z/

url

https://github.com/squid-cache/squid/security/advisories/GHSA-f9p7-3jqg-hhvq

reference_url	https://access.redhat.com/errata/RHSA-2026:10255
reference_id	RHSA-2026:10255
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10255

reference_url	https://access.redhat.com/errata/RHSA-2026:10256
reference_id	RHSA-2026:10256
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10256

reference_url	https://access.redhat.com/errata/RHSA-2026:10257
reference_id	RHSA-2026:10257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10257

reference_url	https://access.redhat.com/errata/RHSA-2026:11901
reference_id	RHSA-2026:11901
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:11901

reference_url	https://access.redhat.com/errata/RHSA-2026:20564
reference_id	RHSA-2026:20564
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20564

reference_url	https://access.redhat.com/errata/RHSA-2026:20565
reference_id	RHSA-2026:20565
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20565

reference_url	https://access.redhat.com/errata/RHSA-2026:20580
reference_id	RHSA-2026:20580
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20580

reference_url	https://access.redhat.com/errata/RHSA-2026:6301
reference_id	RHSA-2026:6301
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6301

reference_url	https://access.redhat.com/errata/RHSA-2026:8119
reference_id	RHSA-2026:8119
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8119

reference_url	https://access.redhat.com/errata/RHSA-2026:8317
reference_id	RHSA-2026:8317
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8317

reference_url	https://access.redhat.com/errata/RHSA-2026:8880
reference_id	RHSA-2026:8880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8880

reference_url	https://access.redhat.com/errata/RHSA-2026:9220
reference_id	RHSA-2026:9220
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:9220

reference_url	https://usn.ubuntu.com/8157-1/
reference_id	USN-8157-1
reference_type
scores
url	https://usn.ubuntu.com/8157-1/

Weaknesses

cwe_id	826
name	Premature Release of Resource During Expected Lifetime
description	The product releases a resource that is still intended to be used by itself or another actor.

cwe_id	413
name	Improper Resource Locking
description	The product does not lock or does not correctly lock a resource when the product must have exclusive access to the resource.

cwe_id	416
name	Use After Free
description	Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

Exploits

Severity_range_score 7.5 - 8.7

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rv56-tjvg-bbbc

Vulnerability Instance