CVE-2024-55627
published 2025-01-06CVE-2024-55627: Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP…
PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.98%
57.9th percentile
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The issue has been addressed in Suricata 7.0.8.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | suricata | < suricata 1:7.0.8-1 (forky) | suricata 1:7.0.8-1 (forky) |
| oisf | suricata | < 7.0.8 | 7.0.8 |
| oisf | suricata | >= 0 < 1:7.0.8-1 | 1:7.0.8-1 |
| oisf | suricata | >= 0 < 1:7.0.8-1 | 1:7.0.8-1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH
vendor_debian5.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2024-55627: suricata - Suricata is a network Intrusion Detection System, Intrusion Prevention System an...
vendor_debian·2024·CVSS 5.9
CVE-2024-55627 [MEDIUM] CVE-2024-55627: suricata - Suricata is a network Intrusion Detection System, Intrusion Prevention System an...
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The issue has been addressed in Suricata 7.0.8.
Scope: local
bookworm: open
bullseye: open
forky: resolved (fixed in 1:7.0.8-1)
sid: resolved (fixed in 1:7.0.8-1)
trixie: resolved (fixed in 1:7.0.8-1)
OSV
CVE-2024-55627: Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine
osv·2025-01-06·CVSS 7.5
CVE-2024-55627 [HIGH] CVE-2024-55627: Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The issue has been addressed in Suricata 7.0.8.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/OISF/suricata/commit/282509f70c4ce805098e59535af445362e3e9ebdhttps://github.com/OISF/suricata/commit/8900041405dbb5f9584edae994af2100733fb4behttps://github.com/OISF/suricata/commit/9a53ec43b13f0039a083950511a18bf6f408e432https://github.com/OISF/suricata/security/advisories/GHSA-h2mv-7gg8-8x7vhttps://redmine.openinfosecfoundation.org/issues/7393
2025-01-06
Published