New Delhi, June 23 -- A newly disclosed vulnerability dubbed SquidBleed has sent shockwaves through the cybersecurity community after researchers revealed that the flaw has existed inside the widely used Squid Proxy software since 1997. Tracked as CVE-2026-47729, the bug can allow attackers to access fragments of sensitive data belonging to other users sharing the same proxy infrastructure, including authentication credentials, API keys, session cookies, and private HTTP requests.

Security researchers compare the issue to the infamous Heartbleed vulnerability because it enables unintended memory disclosure from a running service. Unlike traditional exploits that focus on code execution, SquidBleed exposes information that should never le...