CVE-2025-64330

EPSS 0.06%
Veröffentlicht 26.11.2025 23:03:40
Zuletzt bearbeitet 05.12.2025 13:30:59
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a single byte read heap overflow when logging the verdict in eve.alert and eve.drop records can lead to crashes. This requires the per packet alert queue to be filled with alerts and then followed by a pass rule. This issue has been patched in versions 7.0.13 and 8.0.2. To reduce the likelihood of this issue occurring, the alert queue size a should be increased (packet-alert-max in suricata.yaml) if verdict is enabled.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 5

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Oisf ≫ Suricata Version < 7.0.13

Oisf ≫ Suricata Version >= 8.0.0 < 8.0.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.175

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://github.com/OISF/suricata/security/advisories/GHSA-83v7-gm34-f437

Vendor Advisory

https://github.com/OISF/suricata/commit/482e5eac9218d007adbe2410d6c00173368ce947

Patch

https://nvd.nist.gov/vuln/detail/CVE-2025-64330

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-64330

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-64330

EUVD