CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

NVD•added 2026/01/27 5:16 p.m.•2 views

CVE-2026-22258

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, crafted DCERPC traffic can cause Suricata to expand a buffer w/o limits, leading to memory exhaustion and the process getting killed. While reported for DCERPC over UDP, it is believed that DCERPC over TCP and SMB...

7.5CVSS0.00088EPSS

Exploits0References4

OSV•added 2026/01/27 5:16 p.m.•0 views

UBUNTU-CVE-2026-22258

7.5CVSS6AI score0.00088EPSS

Exploits0References6

CVE•added 2026/01/27 4:17 p.m.•321 views

CVE-2026-22258

CVE-2026-22258 affects Suricata (IDS/IPS/NSM). Before versions 8.0.3 and 7.0.14, crafted DCERPC traffic can trigger unbounded buffering, causing memory exhaustion and process termination. While initially observed over UDP, TCP and SMB are also considered vulnerable; however, DCERPC/TCP defaults l...

7.5CVSS6AI score0.00088EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/01/27 4:17 p.m.•17 views

CVE-2026-22258 Suricata DCERPC: unbounded fragment buffering leads to memory exhaustion

7.5CVSS0.00088EPSS

Exploits0References4

Fedora•added 2026/01/25 12:55 a.m.•3 views

[SECURITY] Fedora 43 Update: wireshark-4.6.3-1.fc43

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful...

6.5CVSS5.9AI score0.00059EPSS

Exploits3

Fedora•added 2025/12/12 1:33 a.m.•7 views

[SECURITY] Fedora 43 Update: wireshark-4.6.1-1.fc43

7.8CVSS6.8AI score0.00013EPSS

Exploits0

Tenable Nessus•added 2025/12/01 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2025-64333

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 an...

7.5CVSS5.8AI score0.00076EPSS

Exploits0References3

OSV•added 2025/11/26 11:15 p.m.•1 views

DEBIAN-CVE-2025-64333

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a large HTTP content type, when logged can cause a stack overflow crashing Suricata. This issue has been patched in versions...

7.5CVSS5.3AI score0.00076EPSS

Exploits0References1

OSV•added 2025/11/26 11:5 p.m.•5 views

CVE-2025-64344 Suricata is vulnerable to a stack overflow from unbounded stack allocation in LuaPushStringBuffer

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected wh...

7.5CVSS6.8AI score0.00071EPSS

Exploits0References4

AlpineLinux•added 2025/11/26 10:57 p.m.•2 views

CVE-2025-64333

7.5CVSS6.8AI score0.00076EPSS

Exploits0

Fedora•added 2025/10/23 1:57 a.m.•5 views

[SECURITY] Fedora 41 Update: wireshark-4.4.10-1.fc41

5.5CVSS6.8AI score0.0001EPSS

Exploits0

Fedora•added 2025/06/15 1:7 a.m.•5 views

[SECURITY] Fedora 41 Update: wireshark-4.4.7-1.fc41

7.8CVSS7AI score0.00138EPSS

Exploits1

Fedora•added 2025/03/01 1:24 a.m.•7 views

[SECURITY] Fedora 41 Update: wireshark-4.4.4-1.fc41

7.8CVSS7.7AI score0.0005EPSS

Exploits0

NVD•added 2024/07/11 3:15 p.m.•18 views

CVE-2024-38534

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Crafted modbus traffic can lead to unlimited resource accumulation within a flow. Upgrade to 7.0.6. Set a limited stream.reassembly.depth to reduce the issue...

7.5CVSS0.0064EPSS

Exploits0References4

OSV•added 2024/07/11 3:15 p.m.•1 views

UBUNTU-CVE-2024-38534

7.5CVSS5.8AI score0.0064EPSS

Exploits0References6

CVE•added 2024/07/11 2:47 p.m.•55 views

CVE-2024-38534

CVE-2024-38534 affects Suricata (network IDS/IPS/NSM). Crafted Modbus traffic can cause unlimited resource accumulation within a single flow, impacting availability. The documented remediation is to upgrade Suricata to version 7.0.6 or later and to set a limited stream.reassembly.depth to reduce ...

7.5CVSS7.3AI score0.0064EPSS

Exploits0References4Affected Software1

AlpineLinux•added 2024/07/11 2:47 p.m.•19 views

CVE-2024-38534

7.5CVSS7.5AI score0.0064EPSS

Exploits0

Debian CVE•added 2024/07/11 2:47 p.m.•14 views

CVE-2024-38534

7.5CVSS7.3AI score0.0064EPSS

Exploits0

Vulnrichment•added 2024/07/11 2:47 p.m.•18 views

CVE-2024-38534 Suricata modbus: txs without responses are never freed

7.5CVSS6.8AI score0.0064EPSS

Exploits0References4

Positive Technologies•added 2024/07/11 12:0 a.m.•1 views

PT-2024-28060 · Suricata +1 · Suricata +1

Name of the Vulnerable Software and Affected Versions: Suricata versions prior to 7.0.6 Description: Suricata is a network Intrusion Detection System, Intrusion Prevention System, and Network Security Monitoring engine. Crafted modbus traffic can lead to unlimited resource accumulation within a...

7.5CVSS6.6AI score0.0064EPSS

Exploits0References22

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by