Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Suricata is Vulnerable to Detection Bypass via Crafted Multiple SYN Packets
Vulnerability Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Versions 7.0.11 and below, as well as 8.0.0, are vulnerable to detection bypass when crafted traffic sends multiple SYN packets with different sequence numbers within the same flow tuple, which can cause Suricata to fail to pick up the TCP session. In IDS mode this can lead to a detection and logging bypass. In IPS mode this will lead to the flow getting blocked. This issue is fixed in versions 7.0.12 and 8.0.1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
不恰当实现的标准安全检查
Vulnerability Title
Suricata 安全特征问题漏洞
Vulnerability Description
Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 7.0.11及之前版本和8.0.0版本存在安全特征问题漏洞,该漏洞源于处理特制流量时未能正确识别TCP会话,可能导致检测绕过。
CVSS Information
N/A
Vulnerability Type
N/A