cvedb.io
CVE-2024-55628
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2025-01-06T18:15:22.947 · Last modified 2026-06-17T08:11:19.013

Summary

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

Affected products

oisf — suricata

Does this affect you?

Add your gear to cvedb and we'll alert you only when oisf ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.