Vulnerabilities > Oisf > Suricata
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-26 | CVE-2024-24568 | Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. | 5.3 |
| 2023-06-19 | CVE-2023-35852 | Path Traversal vulnerability in Oisf Suricata In Suricata before 6.0.13 (when there is an adversary who controls an external source of rules), a dataset filename, that comes from a rule, may trigger absolute or relative directory traversal, and lead to write access to a local filesystem. | 7.5 |
| 2023-06-19 | CVE-2023-35853 | Unspecified vulnerability in Oisf Suricata In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. | 9.8 |
| 2023-04-06 | CVE-2020-19678 | Path Traversal vulnerability in multiple products Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter to suricata/suricata_logs_browser.php. | 7.5 |
| 2021-12-16 | CVE-2021-45098 | An issue was discovered in Suricata before 6.0.4. | 7.5 |
| 2021-11-19 | CVE-2021-37592 | Out-of-bounds Write vulnerability in Oisf Suricata Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP stack that can send a certain sequence of segments. | 9.8 |
| 2021-07-22 | CVE-2021-35063 | Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion." | 7.5 |
| 2020-01-06 | CVE-2019-18625 | An issue was discovered in Suricata 5.0.0. | 7.5 |
| 2020-01-06 | CVE-2019-18792 | Interpretation Conflict vulnerability in multiple products An issue was discovered in Suricata 5.0.0. | 9.1 |
| 2019-07-18 | CVE-2019-1010279 | Improper Verification of Cryptographic Signature vulnerability in Oisf Suricata Open Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Service - TCP/HTTP detection bypass. | 7.5 |