CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-59149

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In version 8.0.0, rules using keyword ldap.responses.attribute_type (which is long) with transforms can lead to a stack buffer overflow during Suricata startup or during a rule reload. This issue is fixed in version 8.0.1. To workaround this issue, users can disable rules with ldap.responses.attribute_type and transforms.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.2%

CVSS Severity

CVSS v3 Score 6.2

References

https://forum.suricata.io/t/suricata-8-0-1-and-7-0-12-released/6018
https://github.com/OISF/suricata/commit/38a2cba5c397002047d84645f5ab770ff88020e1
https://github.com/OISF/suricata/security/advisories/GHSA-vxcg-38x4-gj7j
https://redmine.openinfosecfoundation.org/issues/7861

Products affected by CVE-2025-59149

Oisf » Suricata » Version: 8.0.0

cpe:2.3:a:oisf:suricata:8.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59149

Products

Pricing

Contact Us