fkie_cve-2024-55628
Vulnerability from fkie_nvd
Published
2025-01-06 18:15
Modified
2025-01-06 18:15
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.
References
security-advisories@github.comhttps://github.com/OISF/suricata/commit/19cf0f81335d9f787d587450f7105ad95a648951
security-advisories@github.comhttps://github.com/OISF/suricata/commit/37f4c52b22fcdde4adf9b479cb5700f89d00768d
security-advisories@github.comhttps://github.com/OISF/suricata/commit/3a5671739f5b25e5dd973a74ca5fd8ea40e1ae2d
security-advisories@github.comhttps://github.com/OISF/suricata/security/advisories/GHSA-96w4-jqwf-qx2j
security-advisories@github.comhttps://redmine.openinfosecfoundation.org/issues/7280
Impacted products
Vendor Product Version


To clipboard 

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8."
    },
    {
      "lang": "es",
      "value": "Suricata es un sistema de detecci\u00f3n de intrusiones, un sistema de prevenci\u00f3n de intrusiones y un motor de monitoreo de seguridad de red. Antes de la versi\u00f3n 7.0.8, la compresi\u00f3n de nombres de recursos DNS pod\u00eda generar mensajes DNS peque\u00f1os que conten\u00edan nombres de host muy grandes, cuya decodificaci\u00f3n pod\u00eda resultar costosa, y generar registros DNS muy grandes. Si bien existen l\u00edmites, estos eran demasiado generosos. El problema se solucion\u00f3 en Suricata 7.0.8."
    }
  ],
  "id": "CVE-2024-55628",
  "lastModified": "2025-01-06T18:15:22.947",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-01-06T18:15:22.947",
  "references": [
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/OISF/suricata/commit/19cf0f81335d9f787d587450f7105ad95a648951"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/OISF/suricata/commit/37f4c52b22fcdde4adf9b479cb5700f89d00768d"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/OISF/suricata/commit/3a5671739f5b25e5dd973a74ca5fd8ea40e1ae2d"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/OISF/suricata/security/advisories/GHSA-96w4-jqwf-qx2j"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://redmine.openinfosecfoundation.org/issues/7280"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-405"
        },
        {
          "lang": "en",
          "value": "CWE-779"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.