CVE-2024-24568
5.3
MEDIUM
CVSS 3.1
EPSS 0.10%
Description
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, the rules inspecting HTTP2 headers can get bypassed by crafted traffic. The vulnerability has been patched in 7.0.3.
How to fix CVE-2024-24568
To remediate CVE-2024-24568, upgrade the affected package to a fixed version below.
- Debian/suricata—upgrade to 1:7.0.3-1 or later
Is CVE-2024-24568 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:7.0.3-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |