Vulnerabilities > Oisf

DATE CVE VULNERABILITY TITLE RISK
2024-05-07 CVE-2024-32664 Classic Buffer Overflow vulnerability in Oisf Suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf CWE-120
7.3
2024-05-07 CVE-2024-32867 Improper Check for Unusual or Exceptional Conditions vulnerability in Oisf Suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf CWE-754
5.3
2024-02-26 CVE-2024-23835 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject CWE-770
7.5
2024-02-26 CVE-2024-23836 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject CWE-770
7.5
2024-02-26 CVE-2024-23839 Use After Free vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
high complexity
oisf fedoraproject CWE-416
8.1
2024-02-26 CVE-2024-24568 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject
5.3
2023-06-19 CVE-2023-35852 Path Traversal vulnerability in Oisf Suricata
In Suricata before 6.0.13 (when there is an adversary who controls an external source of rules), a dataset filename, that comes from a rule, may trigger absolute or relative directory traversal, and lead to write access to a local filesystem.
network
low complexity
oisf CWE-22
7.5
2023-06-19 CVE-2023-35853 Unspecified vulnerability in Oisf Suricata
In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code.
network
low complexity
oisf
critical
9.8
2023-04-06 CVE-2020-19678 Path Traversal vulnerability in multiple products
Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter to suricata/suricata_logs_browser.php.
network
low complexity
oisf pfsense CWE-22
7.5
2021-12-16 CVE-2021-45098 An issue was discovered in Suricata before 6.0.4.
network
low complexity
oisf debian
7.5