Roman Ezhov

**Name of the Vulnerable Software and Affected Versions** Suricata versions prior to 7.0.8 **Description** The issue is related to a buffer overflow in the BPF filter of the Suricata system, which can be exploited to cause a denial of service. A large BPF filter file provided to Suricata at startup can lead to this buffer overflow. **Recommendations** For versions prior to 7.0.8, update to Suricata 7.0.8 to address the issue. As a temporary workaround, consider restricting the size of BPF filter files provided to Suricata at startup to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** STARDOM FCN/FCJ versions R1.01 through R4.31 **Description** The issue is related to uncontrolled resource consumption in the STARDOM FCN/FCJ programmable logic controllers. This could allow a remote attacker to cause a denial-of-service condition by sending a crafted packet, making the maintenance homepage of the controller inaccessible. As a result, functions such as changing configuration, viewing logs, etc., are not available. However, the controller's operation is not stopped by this condition. **Recommendations** For STARDOM FCN/FCJ versions R1.01 through R4.31, consider restricting access to the maintenance homepage until a patch is available to prevent potential denial-of-service conditions. As a temporary workaround, avoid using functions related to the maintenance homepage, such as changing configuration or viewing logs, to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WAGO 750-3x/-8x products (affected versions not specified) **Description** The issue is related to uncontrolled resource consumption in the mentioned products, which may allow an unauthenticated remote attacker to cause a denial of service (DoS) of the MODBUS server by sending specially crafted packets. This could potentially disrupt the service, making it unavailable to users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.