Filter
SuricataSuricata's defrag contains various issues leading to policy bypass
5.3
First published (updated )
SuricataSuricata's base64 contains an out of bounds write
7.3
First published (updated )
SuricataSuricata 's http2 parser contains an improper compressed header handling can lead to resource starvation
7.5
First published (updated )
Fedoraproject FedoraSuricata http: heap use after free with http.request_header and http.response_header keywords
8.1
EPSS
0.04%
First published (updated )
Fedoraproject FedoraSuricata http2: header handling evasion
5.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oisf Suricatacrafted traffic can cause denial of service
7.5
EPSS
0.05%
First published (updated )
Fedoraproject FedoraSuricata's pgsql: memory exhaustion use on record parsing
7.5
EPSS
0.04%
First published (updated )
Debian Debian LinuxAn issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based sign…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OISF suricata-updateSuricata-Update uses the insecure `yaml.load()` function. Code will be executed if the yaml-file con…
9.3
First published (updated )
SuricataAn issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by…
9.1
First published (updated )
SuricataAn issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature b…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataSuricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can…
7.5
First published (updated )
SuricataSuricata http/byte-ranges: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
SuricataSuricata datasets: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
SuricataSuricata defrag: off by one can lead to policy bypass
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataSuricata detect/datasets: reachable assertion with unimplemented rule option
7.5
First published (updated )
OISF LibHTPhtp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allows remote attackers to cause a …
9.8
First published (updated )
SuricataOpen Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Servi…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OISF LibHTPIn OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing…
5.3
First published (updated )
SuricataA buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the decode-m…
7.5
First published (updated )
SuricataSuricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP sta…
9.8
First published (updated )
Oisf SuricataSuricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.