| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-59150 | Suricata: Keyword tls.subjectaltname can lead to NULL-ptr deref | OISF | suricata | High | 7.5 | 2025-10-01 20:23:54 | Deep Dive |
| CVE-2025-59149 | Suricata: Stack buffer overflow in rule parser when processing long keywords with transforms | OISF | suricata | Medium | 6.2 | 2025-10-01 20:07:44 | Deep Dive |
| CVE-2025-59148 | Suricata's improper use of entropy keyword can lead to a NULL-ptr deref | OISF | suricata | High | 7.5 | 2025-10-01 19:51:27 | Deep Dive |
| CVE-2025-59147 | Suricata is Vulnerable to Detection Bypass via Crafted Multiple SYN Packets | OISF | suricata | High | 7.5 | 2025-10-01 19:27:56 | Deep Dive |
| CVE-2025-53537 | LibHTP's memory leak with lzma can lead to resource starvation | OISF | libhtp | High | 7.5 | 2025-07-23 20:35:31 | Deep Dive |
| CVE-2025-53538 | Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation | OISF | suricata | High | 7.5 | 2025-07-22 21:36:04 | Deep Dive |
| CVE-2025-29918 | Suricata pcre: negated pcr can cause infinite loop | OISF | suricata | Medium | 6.2 | 2025-04-10 21:02:33 | Deep Dive |
| CVE-2025-29917 | Suricata decode_base64: signature can do large memory allocation | OISF | suricata | Medium | 6.2 | 2025-04-10 21:00:06 | Deep Dive |
| CVE-2025-29916 | Suricata datasets: ruleset declared settings can lead to resource starvation | OISF | suricata | Medium | 6.2 | 2025-04-10 20:03:17 | Deep Dive |
| CVE-2025-29915 | Suricata af-packet: defrag option can lead to truncated packets affecting visibility | OISF | suricata | High | 7.5 | 2025-04-10 19:51:48 | Deep Dive |
| CVE-2024-55629 | Suricata generic detection bypass using TCP urgent support | OISF | suricata | High | 7.5 | 2025-01-06 18:04:08 | Deep Dive |
| CVE-2024-55628 | Suricata oversized resource names utilizing DNS name compression can lead to resource starvation | OISF | suricata | High | 7.5 | 2025-01-06 18:02:11 | Deep Dive |
| CVE-2024-55627 | Suricata segfault on StreamingBufferSlideToOffsetWithRegions | OISF | suricata | Medium | 5.9 | 2025-01-06 17:50:42 | Deep Dive |
| CVE-2024-55626 | Suricata oversized bpf file can lead to buffer overflow | OISF | suricata | Low | 3.3 | 2025-01-06 17:47:07 | Deep Dive |
| CVE-2024-55605 | Suricata allows stack overflow in transforms | OISF | suricata | High | 7.5 | 2025-01-06 17:07:19 | Deep Dive |
| CVE-2024-47522 | Suricata ja4: invalid alpn leads to panic | OISF | suricata | High | 7.5 | 2024-10-16 19:40:32 | Deep Dive |
| CVE-2024-47188 | Suricata http/byte-ranges: missing hashtable random seed leads to potential DoS | OISF | suricata | High | 7.5 | 2024-10-16 18:58:12 | Deep Dive |
| CVE-2024-47187 | Suricata datasets: missing hashtable random seed leads to potential DoS | OISF | suricata | High | 7.5 | 2024-10-16 18:50:54 | Deep Dive |
| CVE-2024-45797 | LibHTP's unbounded header handling leads to denial service | OISF | libhtp | High | 7.5 | 2024-10-16 18:45:08 | Deep Dive |
| CVE-2024-45796 | Suricata defrag: off by one can lead to policy bypass | OISF | suricata | Medium | 5.3 | 2024-10-16 18:41:44 | Deep Dive |