CPE-4D6B6B39-BA09-4692-8A4A-1EBC0704103B Detail

CPE Details

OISF (The Open Information Security Foundation) Suricata 7.0.6

Vendor

oisf

Product

suricata

Version

7.0.6

Created

2024-07-15
15h44 +00:00

Modified

2024-07-15
15h44 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:oisf:suricata:7.0.6:::::::*

Informations

Vendor

oisf

Product

suricata

Version

7.0.6

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2024-47522	2024-10-16 19h40 +00:00	Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, invalid ALPN in TLS/QUIC traffic when JA4 matching/logging is enabled can lead to Suricata aborting with a panic. This issue has been addressed in 7.0.7. One may disable ja4 as a workaround.	7.5	High
CVE-2024-47188	2024-10-16 18h58 +00:00	Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to byte-range tracking having predictable hash table behavior. This can lead to an attacker forcing lots of data into a single hash bucket, leading to severe performance degradation. This issue has been addressed in 7.0.7.	7.5	High
CVE-2024-47187	2024-10-16 18h50 +00:00	Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to datasets having predictable hash table behavior. This can lead to dataset file loading to use excessive time to load, as well as runtime performance issues during traffic handling. This issue has been addressed in 7.0.7. As a workaround, avoid loading datasets from untrusted sources. Avoid dataset rules that track traffic in rules.	7.5	High
CVE-2024-45796	2024-10-16 18h41 +00:00	Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, a logic error during fragment reassembly can lead to failed reassembly for valid traffic. An attacker could craft packets to trigger this behavior.This issue has been addressed in 7.0.7.	5.3	Medium
CVE-2024-45795	2024-10-16 18h34 +00:00	Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, rules using datasets with the non-functional / unimplemented "unset" option can trigger an assertion during traffic parsing, leading to denial of service. This issue is addressed in 7.0.7. As a workaround, use only trusted and well tested rulesets.	7.5	High

OISF (The Open Information Security Foundation) Suricata 7.0.6

CPE Details

CPE Name: cpe:2.3:a:oisf:suricata:7.0.6:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:oisf:suricata:7.0.6:::::::*