Filter
SuricataSuricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP sta…
9.8
First published (updated )
OISF LibHTPhtp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allows remote attackers to cause a …
9.8
First published (updated )
OISF suricata-updateSuricata-Update uses the insecure `yaml.load()` function. Code will be executed if the yaml-file con…
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataAn issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by…
9.1
First published (updated )
Fedoraproject FedoraSuricata http: heap use after free with http.request_header and http.response_header keywords
8.1
EPSS
0.04%
First published (updated )
Fedoraproject FedoraSuricata's pgsql: memory exhaustion use on record parsing
7.5
EPSS
0.04%
First published (updated )
Oisf Suricatacrafted traffic can cause denial of service
7.5
EPSS
0.05%
First published (updated )
SuricataSuricata uses excessive resource use in malformed ssh traffic parsing
7.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataSuricata 's http2 parser contains an improper compressed header handling can lead to resource starvation
7.5
First published (updated )
SuricataSuricata defrag: IP ID reuse can lead to policy bypass
7.5
First published (updated )
SuricataSuricata modbus: txs without responses are never freed
7.5
First published (updated )
SuricataSuricata http/range: NULL-ptr deref when http.memcap is reached
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataSuricata detect/datasets: reachable assertion with unimplemented rule option
7.5
First published (updated )
SuricataSuricata datasets: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
SuricataSuricata http/byte-ranges: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
Debian Debian LinuxAn issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based sign…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oisf SuricataSuricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."
7.5
First published (updated )
SuricataAn issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature b…
7.5
First published (updated )
SuricataOpen Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Servi…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SuricataA buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the decode-m…
7.5
First published (updated )
SuricataSuricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can…
7.5
First published (updated )
SuricataSuricata's base64 contains an out of bounds write
7.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.