← Back

CVE-2024-45796

nvd nist
Published: Oct 16, 2024Modified: Nov 3, 2025

JSON object

Loading...
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD

Description

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, a logic error during fragment reassembly can lead to failed reassembly for valid traffic. An attacker could craft packets to trigger this behavior.This issue has been addressed in 7.0.7.

Affected (1)

Products: Oisf: Suricata
Oisf
1 product
Suricata
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Suricata
Before 7.0.7

Related CWEs

CWE-193
Off-by-one Error
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

References (3)

Source: security-advisories@github.com
Third Party Advisory
Source: security-advisories@github.com
Issue Tracking
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.