PT-2024-31777 · Suricata+2 · Suricata+2

Victorjulien

Published

2024-10-16

Updated

2025-11-07

CVE-2024-45796

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions: Suricata versions prior to 7.0.7

Description: Suricata is a network Intrusion Detection System, Intrusion Prevention System, and Network Security Monitoring engine. A logic error during fragment reassembly can lead to failed reassembly for valid traffic. An attacker could craft packets to trigger this behavior.

Recommendations: For versions prior to 7.0.7, update to version 7.0.7 to resolve the issue. As a temporary workaround, consider restricting the handling of fragmented packets until the update is applied.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

ALT-PU-2025-14099

CVE-2024-45796

DLA-4103-1

GHSA-MF6R-3XP2-V7XG

OPENSUSE-SU-2025:15394-1

ROSA-SA-2025-2579

Affected Products

Alt Linux

Debian

Suricata

PT-2024-31777 · Suricata+2 · Suricata+2

CVE-2024-45796

Weakness Enumeration

Related Identifiers

Affected Products

References · 46