7.5

CVE-2018-14568

Exploit
Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Suricata-idsSuricata Version < 4.0.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2% 0.782
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://github.com/kirillwow/ids_bypass
Third Party Advisory
Exploit
https://github.com/OISF/suricata/pull/3428/commits/843d0b7a10bb45627f94764a6c5d468a24143345
Patch
Third Party Advisory
https://redmine.openinfosecfoundation.org/issues/2501
Third Party Advisory
Exploit
https://suricata-ids.org/2018/07/18/suricata-4-0-5-available/
Vendor Advisory