Vulnerabilities > CVE-2024-32867 - Improper Check for Unusual or Exceptional Conditions vulnerability in Oisf Suricata

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

oisf

CWE-754

NVD

Published: 2024-05-07

Updated: 2024-12-19

Summary

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, various problems in handling of fragmentation anomalies can lead to mis-detection of rules and policy. This vulnerability is fixed in 7.0.5 or 6.0.19.

Vulnerable Configurations

Part	Description	Count
Application	Oisf Oisf Suricata 6.0.0 Oisf Suricata 6.0.1 Oisf Suricata 6.0.2 Oisf Suricata 6.0.3 Oisf Suricata 6.0.4 Oisf Suricata 6.0.5 Oisf Suricata 6.0.6 Oisf Suricata 6.0.7 Oisf Suricata 6.0.8 Oisf Suricata 6.0.9 Oisf Suricata 6.0.10 Oisf Suricata 6.0.11 Oisf Suricata 6.0.12 Oisf Suricata 6.0.13 Oisf Suricata 6.0.14 Oisf Suricata 6.0.15 Oisf Suricata 6.0.16 Oisf Suricata 6.0.17 Oisf Suricata 6.0.18 Oisf Suricata 7.0.0 Oisf Suricata 7.0.1 Oisf Suricata 7.0.2 Oisf Suricata 7.0.3 Oisf Suricata 7.0.4	29

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References