Main
Vulnerability Database
Exploits
ID:6415 - Exploit for Security restrictions bypass in Suricata - CVE-2018-6794
ID:6415 - Exploit for Security restrictions bypass in Suricata - CVE-2018-6794
Published: June 17, 2021
Vulnerability identifier: #VU11123
Vulnerability risk: Low
CVE-ID: CVE-2018-6794
CWE-ID: CWE-693
Exploitation vector: Remote access
Vulnerable software:
Suricata
Suricata
Link to public exploit:
Vulnerability description
The vulnerability allows a remote unauthenticated attacker to bypass security restrictions on the target system.
The weakness exists in the detect.c and stream-tcp.c source code files due to improper security restrictions. A remote attacker can submit specially crafted data from a malicious server and bypass security restrictions.
The weakness exists in the detect.c and stream-tcp.c source code files due to improper security restrictions. A remote attacker can submit specially crafted data from a malicious server and bypass security restrictions.
Remediation
Update to version 4.0.4.