Filter
Oisf SuricataSuricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP sta…
9.8
First published (updated )
OISF LibHTPhtp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allows remote attackers to cause a …
9.8
First published (updated )
OISF suricata-updateSuricata-Update uses the insecure `yaml.load()` function. Code will be executed if the yaml-file con…
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Suricata-ids SuricataAn issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by…
9.1
First published (updated )
Fedoraproject FedoraSuricata http: heap use after free with http.request_header and http.response_header keywords
8.1
EPSS
0.04%
First published (updated )
Fedoraproject FedoraSuricata's pgsql: memory exhaustion use on record parsing
7.5
EPSS
0.04%
First published (updated )
Oisf Suricatacrafted traffic can cause denial of service
7.5
EPSS
0.05%
First published (updated )
Oisf SuricataSuricata 's http2 parser contains an improper compressed header handling can lead to resource starvation
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oisf SuricataSuricata defrag: IP ID reuse can lead to policy bypass
7.5
First published (updated )
Oisf SuricataSuricata modbus: txs without responses are never freed
7.5
First published (updated )
Oisf SuricataSuricata http2: oom from duplicate headers
7.5
First published (updated )
Oisf SuricataSuricata http/range: NULL-ptr deref when http.memcap is reached
7.5
First published (updated )
Oisf SuricataSuricata detect/datasets: reachable assertion with unimplemented rule option
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oisf SuricataSuricata datasets: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
Oisf SuricataSuricata http/byte-ranges: missing hashtable random seed leads to potential DoS
7.5
First published (updated )
Oisf SuricataSuricata ja4: invalid alpn leads to panic
7.5
First published (updated )
Debian Debian LinuxAn issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based sign…
7.5
First published (updated )
Oisf SuricataSuricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Suricata-ids SuricataAn issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature b…
7.5
First published (updated )
Oisf SuricataOpen Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Servi…
7.5
First published (updated )
Oisf SuricataA buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the decode-m…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Suricata-ids SuricataSuricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can…
7.5
First published (updated )
Oisf SuricataSuricata's base64 contains an out of bounds write
7.3
First published (updated )
Fedoraproject FedoraSuricata http2: header handling evasion
5.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.