Unrated severityNVD Advisory· Published Feb 26, 2024· Updated Feb 13, 2025

Suricata http2: header handling evasion

CVE-2024-24568

Description

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, the rules inspecting HTTP2 headers can get bypassed by crafted traffic. The vulnerability has been patched in 7.0.3.

Affected products

Oisf/Suricatav5
Range: >= 7.0.0, < 7.0.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/OISF/suricata/commit/478a2a38f54e2ae235f8486bff87d7d66b6307f0mitrex_refsource_MISC
github.com/OISF/suricata/security/advisories/GHSA-gv29-5hqw-5h8cmitrex_refsource_CONFIRM
redmine.openinfosecfoundation.org/issues/6717mitrex_refsource_MISC
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/mitre
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000