Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-28870

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community. When parsing an overly long SSH banner, Suricata can use excessive CPU resources, as well as cause excessive logging volume in alert records. This issue has been patched in versions 6.0.17 and 7.0.4.

Published

2024-04-03T22:15:07.037

Last Modified

2025-04-28T16:43:27.213

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-770
Type: Primary
CWE-770

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	oisf	suricata	< 6.0.17	Yes
Application	oisf	suricata	< 7.0.4	Yes

References

https://github.com/OISF/suricata/security/advisories/GHSA-mhhx-xw7r-r5c8 Vendor Advisory ([email protected])
https://github.com/OISF/suricata/security/advisories/GHSA-mhhx-xw7r-r5c8 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)