Vulnerabilities > Suricata IDS

DATE CVE VULNERABILITY TITLE RISK
2019-10-10 CVE-2019-17420 Improper Input Validation vulnerability in multiple products
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.
network
low complexity
oisf suricata-ids CWE-20
5.0
2019-09-24 CVE-2019-16411 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
7.5
2019-09-24 CVE-2019-16410 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
6.4
2019-09-24 CVE-2019-15699 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in app-layer-ssl.c in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
6.4
2019-08-28 CVE-2019-10056 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Suricata-Ids Suricata 4.1.3/4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-119
5.0
2019-08-28 CVE-2019-10055 Improper Input Validation vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-20
7.8
2019-08-28 CVE-2019-10054 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Suricata-Ids Suricata 4.1.3
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-119
5.0
2019-08-28 CVE-2019-10052 Improper Enforcement of Message or Data Structure vulnerability in Suricata-Ids Suricata 4.1.3
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-707
5.0
2019-08-28 CVE-2019-10051 Improper Check for Unusual or Exceptional Conditions vulnerability in Suricata-Ids Suricata 4.1.3/4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-754
5.0
2019-05-13 CVE-2019-10053 Integer Underflow (Wrap or Wraparound) vulnerability in Suricata-Ids Suricata 4.1.0
An issue was discovered in Suricata 4.1.x before 4.1.4.
network
low complexity
suricata-ids CWE-191
7.5