PT-2024-32468 · Suricata+2 · Suricata+2

Jason Ish

Published

2024-10-16

Updated

2025-11-07

CVE-2024-47187

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 7.0.7

Description Suricata is a network Intrusion Detection System, Intrusion Prevention System, and Network Security Monitoring engine. The issue arises from the missing initialization of the random seed for thash, leading to datasets having predictable hash table behavior. This results in dataset file loading taking excessive time and runtime performance issues during traffic handling.

Recommendations For versions prior to 7.0.7, update to version 7.0.7 to address the issue. As a temporary workaround, avoid loading datasets from untrusted sources. Avoid using dataset rules that track traffic in rules to minimize the risk of exploitation.

Exploit

Fix

Use of a Broken Cryptographic Algorithm

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327CWE-330

Related Identifiers

ALT-PU-2025-14099

CVE-2024-47187

GHSA-64WW-4F6X-863P

OPENSUSE-SU-2025:15394-1

Affected Products

Alt Linux

Debian

Suricata

PT-2024-32468 · Suricata+2 · Suricata+2

CVE-2024-47187

Weakness Enumeration

Related Identifiers

Affected Products

References · 44