{"url":"http://public2.vulnerablecode.io/api/packages/117538?format=json","purl":"pkg:apk/alpine/suricata@7.0.8-r0?arch=riscv64&distroversion=v3.23&reponame=community","type":"apk","namespace":"alpine","name":"suricata","version":"7.0.8-r0","qualifiers":{"arch":"riscv64","distroversion":"v3.23","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59464?format=json","vulnerability_id":"VCID-6pk7-a1e5-tue1","summary":"Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large input buffer to the to_lowercase, to_uppercase, strip_whitespace, compress_whitespace, dotprefix, header_lowercase, strip_pseudo_headers, url_decode, or xor transform can lead to a stack overflow causing Suricata to crash. The issue has been addressed in Suricata 7.0.8.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55605","reference_id":"","reference_type":"","scores":[{"value":"0.00523","scoring_system":"epss","scoring_elements":"0.67361","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55605"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55605","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55605"},{"reference_url":"https://redmine.openinfosecfoundation.org/issues/7229","reference_id":"7229","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T17:20:58Z/"}],"url":"https://redmine.openinfosecfoundation.org/issues/7229"},{"reference_url":"https://github.com/OISF/suricata/security/advisories/GHSA-x2hr-33vp-w289","reference_id":"GHSA-x2hr-33vp-w289","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T17:20:58Z/"}],"url":"https://github.com/OISF/suricata/security/advisories/GHSA-x2hr-33vp-w289"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/117538?format=json","purl":"pkg:apk/alpine/suricata@7.0.8-r0?arch=riscv64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/suricata@7.0.8-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-55605"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pk7-a1e5-tue1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59589?format=json","vulnerability_id":"VCID-9g2y-e2w5-4bdx","summary":"Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large BPF filter file provided to Suricata at startup can lead to a buffer overflow at Suricata startup. The issue has been addressed in Suricata 7.0.8.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55626","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25928","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55626"},{"reference_url":"https://redmine.openinfosecfoundation.org/issues/7366","reference_id":"7366","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:39Z/"}],"url":"https://redmine.openinfosecfoundation.org/issues/7366"},{"reference_url":"https://github.com/OISF/suricata/commit/dd71ef0af222a566e54dfc479dd1951dd17d7ceb","reference_id":"dd71ef0af222a566e54dfc479dd1951dd17d7ceb","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:39Z/"}],"url":"https://github.com/OISF/suricata/commit/dd71ef0af222a566e54dfc479dd1951dd17d7ceb"},{"reference_url":"https://github.com/OISF/suricata/security/advisories/GHSA-wmg4-jqx5-4h9v","reference_id":"GHSA-wmg4-jqx5-4h9v","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:39Z/"}],"url":"https://github.com/OISF/suricata/security/advisories/GHSA-wmg4-jqx5-4h9v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/117538?format=json","purl":"pkg:apk/alpine/suricata@7.0.8-r0?arch=riscv64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/suricata@7.0.8-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-55626"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9g2y-e2w5-4bdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59660?format=json","vulnerability_id":"VCID-amys-da3n-r7f4","summary":"Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data (out of band data) can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible evasions. Suricata 7.0.8 includes options to allow users to configure how to handle TCP urgent data. In IPS mode, you can use a rule such as drop tcp any any -> any any (sid:1; tcp.flags:U*;) to drop all the packets with urgent flag set.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55629","reference_id":"","reference_type":"","scores":[{"value":"0.00525","scoring_system":"epss","scoring_elements":"0.67424","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55629"},{"reference_url":"https://github.com/OISF/suricata/commit/6882bcb3e51bd3cf509fb6569cc30f48d7bb53d7","reference_id":"6882bcb3e51bd3cf509fb6569cc30f48d7bb53d7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T18:51:44Z/"}],"url":"https://github.com/OISF/suricata/commit/6882bcb3e51bd3cf509fb6569cc30f48d7bb53d7"},{"reference_url":"https://redmine.openinfosecfoundation.org/issues/7411","reference_id":"7411","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T18:51:44Z/"}],"url":"https://redmine.openinfosecfoundation.org/issues/7411"},{"reference_url":"https://github.com/OISF/suricata/commit/779f9d8ba35c3f9b5abfa327d3a4209861bd2eb8","reference_id":"779f9d8ba35c3f9b5abfa327d3a4209861bd2eb8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T18:51:44Z/"}],"url":"https://github.com/OISF/suricata/commit/779f9d8ba35c3f9b5abfa327d3a4209861bd2eb8"},{"reference_url":"https://github.com/OISF/suricata/security/advisories/GHSA-69wr-vhwg-84h2","reference_id":"GHSA-69wr-vhwg-84h2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T18:51:44Z/"}],"url":"https://github.com/OISF/suricata/security/advisories/GHSA-69wr-vhwg-84h2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/117538?format=json","purl":"pkg:apk/alpine/suricata@7.0.8-r0?arch=riscv64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/suricata@7.0.8-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-55629"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-amys-da3n-r7f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59415?format=json","vulnerability_id":"VCID-np2s-r1ww-aubw","summary":"Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The issue has been addressed in Suricata 7.0.8.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55627","reference_id":"","reference_type":"","scores":[{"value":"0.00244","scoring_system":"epss","scoring_elements":"0.4794","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-55627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55627"},{"reference_url":"https://github.com/OISF/suricata/commit/282509f70c4ce805098e59535af445362e3e9ebd","reference_id":"282509f70c4ce805098e59535af445362e3e9ebd","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:00Z/"}],"url":"https://github.com/OISF/suricata/commit/282509f70c4ce805098e59535af445362e3e9ebd"},{"reference_url":"https://redmine.openinfosecfoundation.org/issues/7393","reference_id":"7393","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:00Z/"}],"url":"https://redmine.openinfosecfoundation.org/issues/7393"},{"reference_url":"https://github.com/OISF/suricata/commit/8900041405dbb5f9584edae994af2100733fb4be","reference_id":"8900041405dbb5f9584edae994af2100733fb4be","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:00Z/"}],"url":"https://github.com/OISF/suricata/commit/8900041405dbb5f9584edae994af2100733fb4be"},{"reference_url":"https://github.com/OISF/suricata/commit/9a53ec43b13f0039a083950511a18bf6f408e432","reference_id":"9a53ec43b13f0039a083950511a18bf6f408e432","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:00Z/"}],"url":"https://github.com/OISF/suricata/commit/9a53ec43b13f0039a083950511a18bf6f408e432"},{"reference_url":"https://github.com/OISF/suricata/security/advisories/GHSA-h2mv-7gg8-8x7v","reference_id":"GHSA-h2mv-7gg8-8x7v","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T19:15:00Z/"}],"url":"https://github.com/OISF/suricata/security/advisories/GHSA-h2mv-7gg8-8x7v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/117538?format=json","purl":"pkg:apk/alpine/suricata@7.0.8-r0?arch=riscv64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/suricata@7.0.8-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-55627"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-np2s-r1ww-aubw"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/suricata@7.0.8-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"}