Openinfosecfoundation Suricata — known CVE vulnerabilities
Every CVE whose affected-product data names Openinfosecfoundation Suricata, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2015-8954 — CVSS 9.8 (critical): The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote…
CVE-2017-15377 — CVSS 7.5 (high): In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain…
CVE-2017-7177 — CVSS 7.5 (high): Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching.
CVE-2013-5919 — CVSS 5.0 (medium): Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record.
CVE-2014-6603 — CVSS 5.0 (medium): The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a…
CVE-2015-0971 — CVSS 5.0 (medium): The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denial of service (crash) via vectors related to SSL/TLS…