CVE-2018-14568 — Suricata vulnerability

5 documents5 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 48.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oisf Suricata Suricata-ids Suricata

Timeline

PublishedJul 23

Latest updateMay 13

Description

Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received).

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDsuricata-ids/suricata< 4.0.5

▶Debianoisf/suricata< 1:4.0.5-1+3

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-cv4x-fvx8-c5xh: Suricata before 4↗2022-05-13

▶

OSV

CVE-2018-14568: Suricata before 4↗2018-07-23

▶

CVEList

CVE-2018-14568: Suricata before 4↗2018-07-23

▶

📋Vendor Advisories

Debian

CVE-2018-14568: suricata - Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. ...↗2018

▶