Lucene search
K

5 matches found

NVD
NVD
added 2019/09/24 8:15 p.m.24 views

CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 TLS 1.2 packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of t...

9.1CVSS9.2AI score0.01645EPSS
Exploits0References2
OSV
OSV
added 2019/09/24 8:15 p.m.15 views

CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 TLS 1.2 packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of t...

9.1CVSS6.7AI score
Exploits0References2
Cvelist
Cvelist
added 2019/09/24 7:20 p.m.24 views

CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 TLS 1.2 packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of t...

9.2AI score0.01645EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2019/09/24 7:20 p.m.25 views

CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 TLS 1.2 packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of t...

9.1CVSS9.2AI score0.01645EPSS
Exploits0
CVE
CVE
added 2019/09/24 7:20 p.m.84 views

CVE-2019-15699

CVE-2019-15699 affects Suricata 4.1.4, where the SSL/TLS parser in app-layer-ssl.c (TLSDecodeHSHelloExtensions) accesses an unallocated memory region when processing a corrupted SSLv3/TLS 1.2 HSHelloExtensions length mismatch. This can lead to memory corruption/heap issues as described in multipl...

9.1CVSS9AI score0.01645EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder