CVE-2025-54574

CRITICAL

CVSS v3

9.8

CRITICAL

EPSS Score

2.1%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access permissions.

Technical Details

Published
8/1/2025

Frequently Asked Questions

What is CVE-2025-54574?

Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to a heap buffer overflow and possible remote code execution attack when processing URN due to incorrect buffer management. This has been fixed in version 6.4. To work around this issue, disable URN access permissions.

Is CVE-2025-54574 actively exploited?

Active exploitation of CVE-2025-54574 has not been confirmed. The EPSS score is 2.1%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2025-54574?

CVE-2025-54574 has a CVSS v3 base score of 9.8 (CRITICAL severity).

Is CVE-2025-54574 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.