Suricata@5.0.0 Security Vulnerabilities and Issues — Suricata@5.0.0 CVE List

Lucene search

OisfSuricata5.0.0

2 matches found

CVE•added 2020/01/06 9:15 p.m.•127 views

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST A...

7.5CVSS7.4AI score0.00345EPSS

CVE•added 2020/01/06 6:15 p.m.•51 views

CVE-2019-18792

An issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by overlapping a TCP segment with a fake FIN packet. The fake FIN packet is injected just before the PUSH ACK packet we want to bypass. The PUSH ACK packet (containing the data) will be ignored by Suri...

9.1CVSS9AI score0.00249EPSS