CVE-2025-29915

Published Apr 10, 2025

Last updated a month ago

CVSS high 7.5

Overview

Description
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET defrag option is enabled by default and allows AF_PACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is based on the network interface MTU which leads to Suricata seeing truncated packets. Upgrade to Suricata 7.0.9, which uses better defaults and adds warnings for user configurations that may lead to issues.
Source
security-advisories@github.com
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Primary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Severity
HIGH

Weaknesses

security-advisories@github.com
CWE-347

Social media

Hype score
Not currently trending

  1. SIOSセキュリティブログを更新しました。 suricataの脆弱性(Important: CVE-2025-29915, Medium: CVE-2025-29916, CVE-2025-29917, CVE-2025-29918) #sios_tech #security #vulnerability #セキュリティ #脆弱性 #ids #suricata https://t.co/KMcKYyD2ld

    @omokazuki

    20 Apr 2025

    71 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CVE-2025-29915 🔴 HIGH (7.5) 🏢 OISF - suricata 🏗️ < 7.0.9 🔗 https://t.co/lqQ6OpbgzV 🔗 https://t.co/Ohu8gTfemP 🔗 https://t.co/pkJGs5hjb1 #CyberCron #VulnAlert #InfoSec https://t.co/Fh5yxkihOU

    @cybercronai

    12 Apr 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-29915 04/10/2025 08:15:23 PM BaseSeverity: HIGH Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET defrag ... https://t.co/iMwi2FznCv

    @CVETracker

    11 Apr 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2025-29915 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET defrag option is enabled by defaul… https://t.co/rIrNP1s6Xa

    @CVEnew

    10 Apr 2025

    259 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.