CVE-2021-28116 log

Severity High
Remote Yes
Type Information disclosure
Squid before version 5.2, in some configurations, allows information disclosure because of an out-of-bounds read in WCCPv2 protocol data. This problem allows a WCCPv2 sender to corrupt Squids list of known WCCP routers and divert client traffic to attacker controlled routers.
Group Package Affected Fixed Severity Status Ticket
AVG-1667 squid 5.1-1 5.2-1 High Fixed