Cyber Security News

Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data

CybersecurityNews
Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data
Security researchers at Calif.io disclosed Squidbleed, a memory leak vulnerability in Squid Proxy tracked as CVE-2026-47729 that has existed since 1997. The flaw can expose uncleared HTTP request data, including credentials and session tokens, in shared proxy environments, and has been patched in Squid 8 and Squid 7.6. #SquidProxy #Squidbleed #CVE-2026-47729 #Califio #Anthropic #ClaudeMythos

Keypoints

  • Squid Proxy contains a memory leak flaw present since 1997.
  • The issue is tracked as CVE-2026-47729 and nicknamed Squidbleed.
  • The bug can expose previous users’ uncleared HTTP request data.
  • Shared proxy environments face the highest risk from exploitation.
  • Squid 8 and Squid 7.6 include fixes, and disabling FTP reduces risk.

Read More: https://www.securityweek.com/decades-old-squid-proxy-flaw-squidbleed-can-expose-user-data/

SHARE THIS STORY

WhatsAppX (Twitter)TelegramBlueskyFacebookLinkedInThreadsEmailPrint