Main Vulnerability Database Vulnerabilities #VU116638

Stack-based buffer overflow in Squid - CVE-2025-59362

Published: October 6, 2025

Vulnerability identifier: #VU116638

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-59362

CWE-ID: CWE-121

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Squid-cache.org

Affected software:
Squid

Detailed vulnerability description

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error when handling ASN.1 encoding of long SNMP OIDs within the asn_build_objid() function in lib/snmplib/asn1.c. A remote user can trigger a stack-based buffer overflow and crash the proxy server.

How to mitigate CVE-2025-59362

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Sources

https://github.com/Microsvuln/advisories/blob/main/CVE-2025-59362/CVE-2025-59362.md
https://github.com/squid-cache/squid/pull/2149
https://github.com/squid-cache/squid/pull/2149/commits/34d90168f4a6905b254c4158b2e0cb79e4e7c05b

Stack-based buffer overflow in Squid - CVE-2025-59362

Detailed vulnerability description

How to mitigate CVE-2025-59362

Sources

Please verify you're human