fkie_nvd - fkie_cve-2013-5919

fkie_cve-2013-5919

Vulnerability from fkie_nvd

Published

2014-05-30 14:55

Modified

2025-04-12 10:46

Severity ?

Summary

Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record.

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/54968
cve@mitre.org	http://suricata-ids.org/2013/09/24/suricata-1-4-6-released/	Patch, Vendor Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/87492
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/54968
af854a3a-2127-422b-91ae-364da2661108	http://suricata-ids.org/2013/09/24/suricata-1-4-6-released/	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/87492

Impacted products

Vendor	Product	Version
oisf	suricata	1.3
oisf	suricata	1.3
oisf	suricata	1.3
oisf	suricata	1.3.1
oisf	suricata	1.3.2
oisf	suricata	1.3.3
oisf	suricata	1.3.4
oisf	suricata	1.3.5
oisf	suricata	1.3.6
oisf	suricata	1.4
oisf	suricata	1.4
oisf	suricata	1.4
oisf	suricata	1.4
oisf	suricata	1.4.1
oisf	suricata	1.4.2
oisf	suricata	1.4.3
oisf	suricata	1.4.4
openinfosecfoundation	suricata	*
openinfosecfoundation	suricata	1.4

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3:beta2:*:*:*:*:*:*",
              "matchCriteriaId": "6AE9A26B-52F4-4732-A22B-90F763DB13B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3:beta3:*:*:*:*:*:*",
              "matchCriteriaId": "7C98C6B6-3CC3-4D6B-B569-6E46EA170658",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "EC2FC97D-56ED-4F7C-9F4A-3F1B73B5AABF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6FE08247-BC07-4968-BFE0-491D761BD438",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E768D8A2-18A9-4CA7-96E2-FF3393A380A9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EE65908-798A-4872-BD17-F42CA1C33898",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BBFF0E62-6B39-4562-A261-1C3E3A587977",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "0BEFC8EC-9C9C-49D9-93DE-D5D091709E32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CD31DFD-F92C-4535-88AE-41E3AA402FD4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta1:*:*:*:*:*:*",
              "matchCriteriaId": "98C0B959-3F7C-4A6E-ACE5-A34B3AB559B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta2:*:*:*:*:*:*",
              "matchCriteriaId": "94A52C3A-9FB3-4F8F-B406-24F5C8A17675",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4:beta3:*:*:*:*:*:*",
              "matchCriteriaId": "1B12DAD5-01DE-4270-9F2B-FE4F60DA51C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "48E2FD96-DCC0-45E0-94FE-CA58B4E14740",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2AB6FA42-3CAF-4EAD-8A00-6CC1C41B91F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD7AAB17-29B5-4423-ACCB-6C8A06B0F641",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7068B8FB-5689-4A9D-ABFC-D7BE19A0BEFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oisf:suricata:1.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8396101C-CC57-4692-A505-47F30F12647C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openinfosecfoundation:suricata:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C221CDA5-C3CF-4015-AEE5-DECC263ACFAB",
              "versionEndIncluding": "1.4.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openinfosecfoundation:suricata:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EFC9D2C-F02C-4E85-B8B0-8003466F0304",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record."
    },
    {
      "lang": "es",
      "value": "Suricata anterior a 1.4.6 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de un registro SSL malformado."
    }
  ],
  "id": "CVE-2013-5919",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-05-30T14:55:08.397",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/54968"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://suricata-ids.org/2013/09/24/suricata-1-4-6-released/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87492"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/54968"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://suricata-ids.org/2013/09/24/suricata-1-4-6-released/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87492"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2013-5919 (GCVE-0-2013-5919)

Vulnerability from cvelistv5

Published

2014-05-30 14:00