Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Suricata af-packet: defrag option can lead to truncated packets affecting visibility
Vulnerability Description
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET defrag option is enabled by default and allows AF_PACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is based on the network interface MTU which leads to Suricata seeing truncated packets. Upgrade to Suricata 7.0.9, which uses better defaults and adds warnings for user configurations that may lead to issues.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
Suricata 数据伪造问题漏洞
Vulnerability Description
Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata存在数据伪造问题漏洞,该漏洞源于默认配置问题,可能导致数据包截断。
CVSS Information
N/A
Vulnerability Type
N/A