CVE-2013-5919

Published May 30, 2014

Last updated 3 months ago

CVSS info 5.0

Overview

Description: Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AE9A26B-52F4-4732-A22B-90F763DB13B1"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C98C6B6-3CC3-4D6B-B569-6E46EA170658"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC2FC97D-56ED-4F7C-9F4A-3F1B73B5AABF"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FE08247-BC07-4968-BFE0-491D761BD438"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E768D8A2-18A9-4CA7-96E2-FF3393A380A9"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3EE65908-798A-4872-BD17-F42CA1C33898"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBFF0E62-6B39-4562-A261-1C3E3A587977"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BEFC8EC-9C9C-49D9-93DE-D5D091709E32"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CD31DFD-F92C-4535-88AE-41E3AA402FD4"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98C0B959-3F7C-4A6E-ACE5-A34B3AB559B9"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94A52C3A-9FB3-4F8F-B406-24F5C8A17675"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B12DAD5-01DE-4270-9F2B-FE4F60DA51C7"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48E2FD96-DCC0-45E0-94FE-CA58B4E14740"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2AB6FA42-3CAF-4EAD-8A00-6CC1C41B91F2"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD7AAB17-29B5-4423-ACCB-6C8A06B0F641"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7068B8FB-5689-4A9D-ABFC-D7BE19A0BEFD"
          },
          {
            "criteria": "cpe:2.3:a:oisf:suricata:1.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8396101C-CC57-4692-A505-47F30F12647C"
          },
          {
            "criteria": "cpe:2.3:a:openinfosecfoundation:suricata:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C221CDA5-C3CF-4015-AEE5-DECC263ACFAB",
            "versionEndIncluding": "1.4.5"
          },
          {
            "criteria": "cpe:2.3:a:openinfosecfoundation:suricata:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EFC9D2C-F02C-4E85-B8B0-8003466F0304"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References