CVE Vulnerabilities

CVE-2018-14568

Published: Jul 23, 2018 | Modified: Oct 03, 2019
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received).

Affected Software

Name Vendor Start Version End Version
Suricata Suricata-ids * 4.0.5 (excluding)
Suricata Ubuntu bionic *
Suricata Ubuntu cosmic *
Suricata Ubuntu disco *
Suricata Ubuntu eoan *
Suricata Ubuntu trusty *
Suricata Ubuntu upstream *
Suricata Ubuntu xenial *

References