Use of insufficiently random values in Suricata - CVE-2024-47187
Published: October 16, 2024 / Updated: April 27, 2026
Suricata
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to use of insufficiently random values in the thash hashtable implementation for datasets when loading dataset files or handling tracked traffic. A remote attacker can supply a crafted dataset or traffic patterns that trigger predictable hash table behavior to cause a denial of service.