PT-2024-1594 · Suricata · Suricata

Victorjulien

Published

2024-02-08

Updated

2025-07-28

CVE-2024-24568

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 7.0.3

Description The issue is related to the rules inspecting HTTP2 headers in Suricata, which can be bypassed by crafted traffic. This can potentially allow a remote attacker to compromise the integrity of protected information. The vulnerability has been patched in version 7.0.3.

Recommendations For Suricata versions prior to 7.0.3, update to version 7.0.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of HTTP2 headers inspection rules until a patch is applied.

Exploit

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-1395

Related Identifiers

BDU:2024-01184

CVE-2024-24568

GHSA-GV29-5HQW-5H8C

OPENSUSE-SU-2025:15394-1

Affected Products

Suricata

PT-2024-1594 · Suricata · Suricata

CVE-2024-24568

Weakness Enumeration

Related Identifiers

Affected Products

References · 52