Multiple Vulnerabilities in Squid Web Proxy Enable DoS and Data Confidentiality Breach

Multiple vulnerabilities were discovered in Squid, a caching and forwarding HTTP web proxy, as reported on 25 March 2026. These flaws enable a remote attacker to cause a denial of service (DoS) and compromise data confidentiality. No specific CVE identifiers, affected versions, or technical details about the exploitation mechanisms were provided in the notice. The vulnerabilities were disclosed by the French national cybersecurity agency (ANSSI) via its CERT-FR team. The impacts include disruption of service availability and unauthorized access to sensitive information.