Reachable assertion in Suricata - CVE-2024-45795
Published: October 16, 2024 / Updated: April 27, 2026
Suricata
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to reachable assertion in detect/datasets when parsing traffic with rules using datasets and the unimplemented "unset" option. A remote attacker can send traffic that matches a specially crafted rule to cause a denial of service.