CVE-2015-0971 — Suricata vulnerability

CWE-3997 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

0.4%

top 39.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMay 14

Latest updateMay 17

Description

The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denial of service (crash) via vectors related to SSL/TLS certificates.

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

▶Debianoisf/suricata< 2.0.8-1+3

Also affects: Debian Linux 8.0

GHSA

GHSA-947v-7fmp-4jgf: The DER parser in Suricata before 2↗2022-05-17

▶

OSV

CVE-2015-0971: The DER parser in Suricata before 2↗2015-05-14

▶

CVEList

CVE-2015-0971: The DER parser in Suricata before 2↗2015-05-14

▶

Debian

CVE-2015-0971: suricata - The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denia...↗2015

▶

Bugzilla

CVE-2015-0971 suricata: SSL/TLS DER parser bug↗2015-05-12

▶

Bugzilla

CVE-2015-0971 suricata: SSL/TLS DER parser bug [fedora-all]↗2015-05-12

▶