Suricata@* Security Vulnerabilities and Issues — Suricata@* CVE List

Lucene search

OisfSuricata*

3 matches found

CVE•added 2021/12/16 5:15 a.m.•66 views

CVE-2021-45098

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option. ...

7.5CVSS7.4AI score0.00432EPSS

CVE•added 2021/07/22 6:15 p.m.•63 views

CVE-2021-35063

Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."

7.5CVSS7.3AI score0.00902EPSS

CVE•added 2021/11/19 3:15 p.m.•53 views

CVE-2021-37592

Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP stack that can send a certain sequence of segments.

9.8CVSS9.1AI score0.00185EPSS