Vulnerabilities > Suricata IDS
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-28 | CVE-2019-10051 | Improper Check for Unusual or Exceptional Conditions vulnerability in Suricata-Ids Suricata 4.1.3/4.1.4 An issue was discovered in Suricata 4.1.3. | 5.0 |
2019-05-13 | CVE-2019-10053 | Integer Underflow (Wrap or Wraparound) vulnerability in Suricata-Ids Suricata 4.1.0 An issue was discovered in Suricata 4.1.x before 4.1.4. | 7.5 |
2019-04-04 | CVE-2018-10244 | Integer Overflow or Wraparound vulnerability in Suricata-Ids Suricata 4.0.4 Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. | 7.5 |
2019-04-04 | CVE-2018-10242 | Out-of-bounds Read vulnerability in multiple products Suricata version 4.0.4 incorrectly handles the parsing of the SSH banner. | 5.0 |
2018-11-05 | CVE-2018-18956 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Suricata-Ids Suricata The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018. | 5.0 |
2018-07-23 | CVE-2018-14568 | Unspecified vulnerability in Suricata-Ids Suricata Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. | 5.0 |
2018-07-23 | CVE-2016-10728 | Improper Input Validation vulnerability in Suricata-Ids Suricata An issue was discovered in Suricata before 3.1.2. | 5.0 |
2018-02-07 | CVE-2018-6794 | Protection Mechanism Failure vulnerability in multiple products Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. | 5.0 |
2014-05-30 | CVE-2013-5919 | Improper Input Validation vulnerability in multiple products Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record. | 5.0 |