🟠 High | Source: Schneier on Security
A 29-year-old vulnerability in Squid proxy software, dubbed ‘Squidbleed’, has been disclosed, allowing HTTP requests to be leaked. Squid is a widely used open-source caching proxy deployed across on-premises and cloud environments. Despite its age, this flaw is significant as Squid remains prevalent in many enterprise and cloud network architectures as a forward or reverse proxy.
Security Architect’s Take: Audit your environment immediately for any Squid proxy deployments — including those embedded in containerised workloads or cloud egress filtering stacks — and apply available patches or mitigations. Review network segmentation to ensure Squid instances are not exposed to untrusted networks pending remediation.
Original advisory: Friday Squid Blogging: “Squidbleed” Vulnerability