38 matches found
EUVD-2019-7816
Malware in sbrugna...
EUVD-2025-22378
Malicious code in bioql PyPI...
CVE-2025-53538
Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions 7.0.10 and below and 8.0.0-beta1 through 8.0.0-rc1, mishandling of data on HTTP2 stream 0 can lead to uncontrolled memory usage, leading to loss of...
CVE-2025-53538 Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation
Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions 7.0.10 and below and 8.0.0-beta1 through 8.0.0-rc1, mishandling of data on HTTP2 stream 0 can lead to uncontrolled memory usage, leading to loss of...
CVE-2025-53538
CVE-2025-53538 affects Suricata (IDS/IPS/NSM engine by OISF) in versions 7.0.10 and earlier and 8.0.0-beta1 through 8.0.0-rc1. The root cause is mishandling of data on HTTP/2 stream 0, causing uncontrolled memory usage and loss of visibility. The issue scores as CVSS v3.1/7.5 (HIGH) with NETWORK ...
CVE-2025-53538 Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation
Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions 7.0.10 and below and 8.0.0-beta1 through 8.0.0-rc1, mishandling of data on HTTP2 stream 0 can lead to uncontrolled memory usage, leading to loss of...
CVE-2019-17420
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
Suricata 6.x < 6.0.19 / 7.x < 7.0.5 Multiple Vulnerabilities
The version of OISF Suricata installed on the remote host is prior to 6.0.19 or 7.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities: - In affected versions, specially crafted traffic or datasets can cause a limited buffer overflow. CVE-2024-32664 - In affected versions, a...
CVE-2024-28870 Suricata uses excessive resource use in malformed ssh traffic parsing
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community. When parsing an overly long SSH banner, Suricata can use excessive CPU resources, as well as cause excessive logging volume in ale...
CVE-2024-28870 Suricata uses excessive resource use in malformed ssh traffic parsing
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community. When parsing an overly long SSH banner, Suricata can use excessive CPU resources, as well as cause excessive logging volume in ale...
CVE-2024-28870
Suricata (IDS/IPS/NSM) is affected when parsing an overly long SSH banner, which can cause excessive CPU usage and log volume. The issue is a result of banner parsing inefficiency and has been fixed in Suricata 6.0.17 and 7.0.4. If deploying affected lines prior to those patches, upgrade to one o...
CVE-2024-28870
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community. When parsing an overly long SSH banner, Suricata can use excessive CPU resources, as well as cause excessive logging volume in ale...
OISF suricata-update unsafely deserializes YAML data
Suricata-Update uses the insecure yaml.load function. Code will be executed if the yaml-file contains lines like: yaml hello: !!python/object/apply:os.system 'ls -l /tmp/output' The vulnerable function can be triggered by "suricata-update list-sources". The locally stored index.yaml will be loade...
GHSA-7C4H-W765-6PWG OISF suricata-update unsafely deserializes YAML data
Suricata-Update uses the insecure yaml.load function. Code will be executed if the yaml-file contains lines like: yaml hello: !!python/object/apply:os.system 'ls -l /tmp/output' The vulnerable function can be triggered by "suricata-update list-sources". The locally stored index.yaml will be loade...
suricata:fuzz_sigpcap: Heap-buffer-overflow in DetectSetFastPatternAndItsId
Project: https://github.com/OISF/suricata.git Detailed Report: https://oss-fuzz.com/testcase?key=6260257470021632 Project: suricata Fuzzing Engine: afl Fuzz Target: fuzzsigpcap Job Type: aflasansuricata Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address: 0x61500071543e Crash...
CVE-2019-17420
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
CVE-2019-17420
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
Code injection
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
CVE-2019-17420
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
CVE-2019-17420
CVE-2019-17420 affects LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products. The vulnerability arises from an HTTP protocol parsing error that causes the http_header signature to fail to alert on a response ending with a single CRLF ("\r\n"). Impact is that such responses may bypass...