Search CVE reports
41 – 50 of 50 results
CVE-2018-14568
Medium prioritySuricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Not affected | Not affected | Not in release | Needs evaluation | Needs evaluation |
CVE-2016-10728
Medium priorityAn issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The toclient inspection will...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Not affected | Not affected | Not in release | Not affected | Vulnerable |
CVE-2018-6794
Medium prioritySuricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends data before the 3-way handshake is complete, then the data sent by the...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Not affected | Not affected | Not in release | Vulnerable | Vulnerable |
CVE-2017-15377
Medium priorityIn Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c....
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Not affected | Not affected | Not in release | Vulnerable | Vulnerable |
CVE-2015-0928
Medium prioritySome fixes available 1 of 4
libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference).
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | — | — | — | — | Not affected |
CVE-2015-8954
Medium priorityThe MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafted HTTP request.
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | — | — | — | Not affected | Not affected |
CVE-2017-7177
Medium prioritySuricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching.
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Not affected | Not affected | Not in release | Vulnerable | Vulnerable |
CVE-2015-0971
Medium prioritySome fixes available 1 of 4
The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denial of service (crash) via vectors related to SSL/TLS certificates.
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | — | — | — | — | Not affected |
CVE-2014-6603
Medium priorityThe SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner,...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | — | — | — | — | — |
CVE-2013-5919
Medium prioritySuricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record.
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | — | — | — | — | Not affected |