Vulnerability Description
An issue was discovered in Squid through 4.7. When Squid is run as root, it spawns its child processes as a lesser user, by default the user nobody. This is done via the leave_suid call. leave_suid leaves the Saved UID as 0. This makes it trivial for an attacker who has compromised the child process to escalate their privileges back to root.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Squid-Cache | Squid | <= 4.7 |
Related Weaknesses (CWE)
References
- https://gitlab.com/jeriko.one/security/-/blob/master/squid/CVEs/CVE-2019-12522.tThird Party Advisory
- https://security.netapp.com/advisory/ntap-20210205-0006/Third Party Advisory
- https://gitlab.com/jeriko.one/security/-/blob/master/squid/CVEs/CVE-2019-12522.tThird Party Advisory
- https://security.netapp.com/advisory/ntap-20210205-0006/Third Party Advisory
FAQ
What is CVE-2019-12522?
CVE-2019-12522 is a vulnerability with a CVSS score of 4.5 (MEDIUM). An issue was discovered in Squid through 4.7. When Squid is run as root, it spawns its child processes as a lesser user, by default the user nobody. This is done via the leave_suid call. leave_suid le...
How severe is CVE-2019-12522?
CVE-2019-12522 has been rated MEDIUM with a CVSS base score of 4.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-12522?
Check the references section above for vendor advisories and patch information. Affected products include: Squid-Cache Squid.