CVE-2019-1010279

DEB

High

Open Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Service - TCP/HTTP detection bypass. The imp…

CVSS

7.5

High

EPSS

0.01

p70

Published

2019-01-01

Updated

2019-01-01

Description

Open Information Security Foundation Suricata prior to version 4.1.3 is affected by: Denial of Service - TCP/HTTP detection bypass. The impact is: An attacker can evade a signature detection with a specialy formed sequence of network packets. The component is: detect.c (https://github.com/OISF/suricata/pull/3625/commits/d8634daf74c882356659addb65fb142b738a186b). The attack vector is: An attacker can trigger the vulnerability by a specifically crafted network TCP session. The fixed version is: 4.1.3.

Tags · CWE

Pre-auth

CWE-347

CAPEC-463

CAPEC-475

Affected products

Suricata < 4.1.3

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Timeline

2019-01-01

Published

2019-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: N

None (N)

Integrity Impact

I: N

None (N)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.015 · p70

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Product	Vendor	Status
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata		Tracked
suricata	*	Tracked

Source databases

DEB

CVE

UBU