CVE-2024-32867

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, various problems in handling of fragmentation anomalies can lead to mis-detection of rules and policy. This vulnerability is fixed in 7.0.5 or 6.0.19.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/OISF/suricata/commit/1e110d0a71db46571040b937e17a4bc9f91d6de9
https://github.com/OISF/suricata/commit/2f39ba75f153ba9bdf8eedc2a839cc973dbaea66
https://github.com/OISF/suricata/commit/414f97c6695c5a2e1d378a36a6f50d7288767634
https://github.com/OISF/suricata/commit/bf3d420fb709ebe074019a99e3bd3a2364524a4b
https://github.com/OISF/suricata/commit/d13bd2ae217a6d2ceb347f74d27cbfcd37b9bda9
https://github.com/OISF/suricata/commit/e6267758ed5da27f804f0c1c07f9423bdf4d72b8
https://github.com/OISF/suricata/security/advisories/GHSA-xvrx-88mv-xcq5
https://redmine.openinfosecfoundation.org/issues/6672
https://redmine.openinfosecfoundation.org/issues/6673
https://redmine.openinfosecfoundation.org/issues/6677

Configurations

No configuration.

History

07 May 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-07 15:15

Updated : 2024-05-07 20:07

NVD link : CVE-2024-32867

Mitre link : CVE-2024-32867

CVE.ORG link : CVE-2024-32867

JSON object : View

Products Affected

No product.

CWE

CWE-754

Improper Check for Unusual or Exceptional Conditions

{"id": "CVE-2024-32867", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-05-07T15:15:09.143", "references": [{"url": "https://github.com/OISF/suricata/commit/1e110d0a71db46571040b937e17a4bc9f91d6de9", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/commit/2f39ba75f153ba9bdf8eedc2a839cc973dbaea66", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/commit/414f97c6695c5a2e1d378a36a6f50d7288767634", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/commit/bf3d420fb709ebe074019a99e3bd3a2364524a4b", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/commit/d13bd2ae217a6d2ceb347f74d27cbfcd37b9bda9", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/commit/e6267758ed5da27f804f0c1c07f9423bdf4d72b8", "source": "security-advisories@github.com"}, {"url": "https://github.com/OISF/suricata/security/advisories/GHSA-xvrx-88mv-xcq5", "source": "security-advisories@github.com"}, {"url": "https://redmine.openinfosecfoundation.org/issues/6672", "source": "security-advisories@github.com"}, {"url": "https://redmine.openinfosecfoundation.org/issues/6673", "source": "security-advisories@github.com"}, {"url": "https://redmine.openinfosecfoundation.org/issues/6677", "source": "security-advisories@github.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-754"}]}], "descriptions": [{"lang": "en", "value": "Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, various problems in handling of fragmentation anomalies can lead to mis-detection of rules and policy. This vulnerability is fixed in 7.0.5 or 6.0.19."}], "lastModified": "2024-05-07T20:07:58.737", "sourceIdentifier": "security-advisories@github.com"}