PT-2024-32469 · Suricata+2 · Suricata+2

Juliana Fajardini Reichow

Published

2024-10-16

Updated

2025-11-07

CVE-2024-47188

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 7.0.7

Description The issue is related to the missing initialization of the random seed for thash, leading to predictable hash table behavior in byte-range tracking. This can cause severe performance degradation if an attacker forces a large amount of data into a single hash bucket. Suricata is a network Intrusion Detection System, Intrusion Prevention System, and Network Security Monitoring engine.

Recommendations For versions prior to 7.0.7, update to version 7.0.7 to address the issue.

Exploit

Fix

Use of a Broken Cryptographic Algorithm

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327CWE-330

Related Identifiers

ALT-PU-2025-14099

CVE-2024-47188

GHSA-QQ5V-QCJX-F872

OPENSUSE-SU-2025:15394-1

Affected Products

Alt Linux

Debian

Suricata

PT-2024-32469 · Suricata+2 · Suricata+2

CVE-2024-47188

Weakness Enumeration

Related Identifiers

Affected Products

References · 44