Vulnerabilities > Suricata IDS > Suricata > 4.1.4

DATE CVE VULNERABILITY TITLE RISK
2019-10-10 CVE-2019-17420 Incomplete Cleanup vulnerability in multiple products
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.
network
low complexity
suricata-ids oisf CWE-459
5.3
5.3
2019-09-24 CVE-2019-16411 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
critical
 9.8
9.8
2019-09-24 CVE-2019-16410 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
critical
 9.1
9.1
2019-09-24 CVE-2019-15699 Out-of-bounds Read vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in app-layer-ssl.c in Suricata 4.1.4.
network
low complexity
suricata-ids CWE-125
critical
 9.1
9.1
2019-08-28 CVE-2019-10056 Out-of-bounds Write vulnerability in Suricata-Ids Suricata 4.1.3/4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-787
7.5
7.5
2019-08-28 CVE-2019-10055 Reachable Assertion vulnerability in Suricata-Ids Suricata 4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-617
7.5
7.5
2019-08-28 CVE-2019-10051 Improper Check for Unusual or Exceptional Conditions vulnerability in Suricata-Ids Suricata 4.1.3/4.1.4
An issue was discovered in Suricata 4.1.3.
network
low complexity
suricata-ids CWE-754
7.5
7.5