CVE-2024-23836
crafted traffic can cause denial of service
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to versions 6.0.16 and 7.0.3, an attacker can craft traffic to cause Suricata to use far more CPU and memory for processing the traffic than needed, which can lead to extreme slow downs and denial of service. This vulnerability is patched in 6.0.16 or 7.0.3. Workarounds include disabling the affected protocol app-layer parser in the yaml and reducing the `stream.reassembly.depth` value helps reduce the severity of the issue.
Suricata es un sistema de detección de intrusiones en la red, un sistema de prevención de intrusiones y un motor de monitoreo de seguridad de la red. Antes de las versiones 6.0.16 y 7.0.3, un atacante podía manipular el tráfico para hacer que Suricata utilizara mucha más CPU y memoria de la necesaria para procesar el tráfico, lo que puede provocar ralentizaciones extremas y denegación de servicio. Esta vulnerabilidad está parcheada en 6.0.16 o 7.0.3. Los workarounds incluyen deshabilitar el analizador de la capa de aplicación del protocolo afectado en el yaml y reducir el valor `stream.reassembly. Depth` ayuda a reducir la gravedad del problema.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-01-22 CVE Reserved
- 2024-02-26 CVE Published
- 2024-02-27 EPSS Updated
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-770: Allocation of Resources Without Limits or Throttling
CAPEC
References (19)
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
OISF Search vendor "OISF" | Suricata Search vendor "OISF" for product "Suricata" | < 6.0.16 Search vendor "OISF" for product "Suricata" and version " < 6.0.16" | en |
Affected
| ||||||
OISF Search vendor "OISF" | Suricata Search vendor "OISF" for product "Suricata" | >= 7.0.0 < 7.0.3 Search vendor "OISF" for product "Suricata" and version " >= 7.0.0 < 7.0.3" | en |
Affected
|