BREAKING
Squidbleed: CVE-2026-47729
0
yrs
undetected
0
KB
memory pool
0
line
patch fix
How Squidbleed leaks data
1
Attacker FTP server
↓
2
Bad strchr parse
↓
3
Stale 4K buffer read
↓
4
Leaked credentials
Affected vs safe configs
Affected
At risk
●
Cleartext HTTP
●
TLS-terminating proxies
●
Default config since 1997
Not affected
Safe
●
Opaque CONNECT tunnels
●
Standard HTTPS
Fixed in Squid v7.6
Update or disable FTP
AI NEWS BLITZ
A 29-year-old flaw in the Squid proxy has just been uncovered using AI.