Lucene search
+L

1629 matches found

nvd
nvd
added 2 days ago7 views

CVE-2026-59674

A UNIX Symbolic Link Symlink Following vulnerability in openSUSE Tumbleweed suricata package allows the suricata user to escalate to root. This issue affects openSUSE Tumbleweed: from ? before 8.0.5-2.1; openSUSE Tumbleweed: from ? before 8.0.5-2.1...

8.5CVSS0.00129EPSS
Exploits0References1
cvelist
cvelist
added 2 days ago29 views

CVE-2026-59674 LPE from suricata user to root due to chown in %post in suricata packaging

A UNIX Symbolic Link Symlink Following vulnerability in openSUSE Tumbleweed suricata package allows the suricata user to escalate to root. This issue affects openSUSE Tumbleweed: from ? before 8.0.5-2.1; openSUSE Tumbleweed: from ? before 8.0.5-2.1...

8.5CVSS0.00129EPSS
Exploits0References1
cve
cve
added 2 days ago15 views

CVE-2026-59674

CVE-2026-59674 affects openSUSE Tumbleweed surfacing a local privilege escalation in suricata packaging due to a symlink follow vulnerability in the post-install script. Connected details indicate the issue involves the libsuricata8 package (version 8.0.5-2.1 and earlier) and is fixed in 8.0.5-2....

8.5CVSS6.1AI score0.00129EPSS
Exploits0References1
euvd
euvd
added 2 days ago4 views

EUVD-2026-43633

A UNIX Symbolic Link Symlink Following vulnerability in openSUSE Tumbleweed suricata package allows the suricata user to escalate to root. This issue affects openSUSE Tumbleweed: from ? before 8.0.5-2.1; openSUSE Tumbleweed: from ? before 8.0.5-2.1...

8.5CVSS6.1AI score0.00129EPSS
Exploits0References1
attackerkb
attackerkb
added 2 days ago6 views

CVE-2026-59674

A UNIX Symbolic Link Symlink Following vulnerability in openSUSE Tumbleweed suricata package allows the suricata user to escalate to root. This issue affects openSUSE Tumbleweed: from ? before 8.0.5-2.1; openSUSE Tumbleweed: from ? before 8.0.5-2.1...

8.5CVSS6.1AI score0.00129EPSS
Exploits0References2
osv
osv
added 2026/06/09 5:29 a.m.12 views

MGASA-2026-0181 Updated suricata packages fix security vulnerabilities

Various security, performance, accuracy, and stability issues have been fixed, plus we have moved to a supported version...

7.5CVSS5.5AI score0.01001EPSS
Exploits1References8
mageia
mageia
added 2026/06/09 5:29 a.m.20 views

Updated suricata packages fix security vulnerabilities

Various security, performance, accuracy, and stability issues have been fixed, plus we have moved to a supported version...

7.5CVSS6.5AI score0.01001EPSS
Exploits1References7
nessus
nessus
added 2026/06/05 12:0 a.m.10 views

Suricata < 7.0.16 Denial of Service Vulnerability

The version of OISF Suricata installed on the remote host is prior to 7.0.16. It is, therefore, affected by a vulnerability: - The Lua TLS certificate information helper could dereference NULL certificate fields when a Lua script requested certificate information for TLS traffic where some...

5.5AI score0.00046EPSS
Exploits0References2
nessus
nessus
added 2026/06/05 12:0 a.m.8 views

Suricata 8.x < 8.0.5 Multiple Vulnerabilities

The version of OISF Suricata installed on the remote host is 8.x prior to 8.0.5. It is, therefore, affected by multiple vulnerabilities, including: - LDAP transaction state could store an unbounded number of responses. Because LDAP can be processed over UDP, crafted traffic may cause Suricata to...

5.6AI score0.00086EPSS
Exploits0References10
nessus
nessus
added 2026/06/05 12:0 a.m.86 views

Suricata < 7.0.16 / 8.x < 8.0.5 Multiple Vulnerabilities

The version of OISF Suricata installed on the remote host is prior to 7.0.16 or 8.x prior to 8.0.5. It is, therefore, affected by multiple vulnerabilities, including: - A protocol change while processing HTTP/2 traffic could lead to type confusion in Suricata. Crafted traffic may cause Suricata t...

5.8AI score0.02219EPSS
Exploits0References20
fedora
fedora
added 2026/06/01 1:1 a.m.34 views

[SECURITY] Fedora 43 Update: suricata-7.0.16-1.fc43

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

5.8AI score
Exploits0
fedora
fedora
added 2026/06/01 12:49 a.m.37 views

[SECURITY] Fedora 44 Update: suricata-8.0.5-1.fc44

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

5.8AI score
Exploits0
nessus
nessus
added 2026/06/01 12:0 a.m.12 views

Fedora 44 : suricata (2026-53a00bb643)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-53a00bb643 advisory. Upstream bugfix/security release Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

5.8AI score
Exploits0References1
nessus
nessus
added 2026/06/01 12:0 a.m.14 views

Fedora 43 : suricata (2026-4ec2ec78d6)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-4ec2ec78d6 advisory. Upstream bugfix/security release Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

5.8AI score
Exploits0References1
packetstormnews
packetstormnews
added 2026/05/19 12:0 a.m.32 views

Suricata IDPE 8.0.5

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and...

5.8AI score0.02219EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2026/05/04 12:0 a.m.5 views

The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system allows a perpetrator to trigger a service failure.

The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS5.8AI score0.00267EPSS
Exploits0References3Affected Software2
bdu_fstec
bdu_fstec
added 2026/05/04 12:0 a.m.4 views

The vulnerability of the dcerpc parser in the Suricata intrusion detection and prevention system allows a intruder to trigger a service failure.

The vulnerability of the dcerpc parser in the Suricata intrusion detection and prevention system is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service interruptions...

7.8CVSS5.8AI score0.00351EPSS
Exploits0References5Affected Software3
githubexploit
githubexploit
added 2026/05/01 10:12 p.m.106 views

suricata-detections

suricata-detections Network IDS signature development grounde...

10CVSS6.1AI score0.99999EPSS
Exploits354
githubexploit
githubexploit
added 2026/04/28 9:7 a.m.115 views

Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4Shell Security Lab — nginx + Coraza WAF Mục đích giáo...

10CVSS8AI score0.99999EPSS
Exploits354
packetstormnews
packetstormnews
added 2026/04/28 12:0 a.m.20 views

Towards Agentic Investigation of Security Alerts

Security analysts are overwhelmed by the volume of alerts and the low context provided by many detection systems. Early-stage investigations typically require manual correlation across multiple log sources, a task that is usually time-consuming. In this paper, we present an experimental, agentic...

5.8AI score
Exploits0
Rows per page
Query Builder