PT-2021-6464 · Suricata+1 · Suricata+1

Guilherme De Almeida Suckevicz

Published

2021-06-30

Updated

2024-05-23

CVE-2021-35063

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Suricata versions 5.0.0 through 5.0.6 Suricata versions 6.0.0 through 6.0.2

Description The issue is related to insufficient access control in the Suricata intrusion detection and prevention system. It allows a remote attacker to cause a denial of service. The problem gives an opportunity to bypass any Suricata analyzers and checks.

Recommendations For Suricata versions 5.0.0 through 5.0.6, update to version 5.0.7 to resolve the issue. For Suricata versions 6.0.0 through 6.0.2, update to version 6.0.3 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2022-1180

ALT-PU-2024-3982

ALT-PU-2024-8133

BDU:2022-01686

CVE-2021-35063

MGASA-2022-0008

Affected Products

Alt Linux

Suricata

PT-2021-6464 · Suricata+1 · Suricata+1

CVE-2021-35063

Weakness Enumeration

Related Identifiers

Affected Products

References · 27