Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Suricata allows stack overflow in transforms
Vulnerability Description
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large input buffer to the to_lowercase, to_uppercase, strip_whitespace, compress_whitespace, dotprefix, header_lowercase, strip_pseudo_headers, url_decode, or xor transform can lead to a stack overflow causing Suricata to crash. The issue has been addressed in Suricata 7.0.8.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Suricata 资源管理错误漏洞
Vulnerability Description
Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 7.0.8之前版本存在资源管理错误漏洞。攻击者利用该漏洞可以导致堆栈溢出,从而导致 Suricata 崩溃。
CVSS Information
N/A
Vulnerability Type
N/A