- Description
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9.
- Source
- security-advisories@github.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- security-advisories@github.com
- CWE-835
- Hype score
- Not currently trending
SIOSセキュリティブログを更新しました。 suricataの脆弱性(Important: CVE-2025-29915, Medium: CVE-2025-29916, CVE-2025-29917, CVE-2025-29918) #sios_tech #security #vulnerability #セキュリティ #脆弱性 #ids #suricata https://t.co/KMcKYyD2ld
@omokazuki
20 Apr 2025
71 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-29918 🟠 MEDIUM (6.2) 🏢 OISF - suricata 🏗️ < 7.0.9 🔗 https://t.co/pt3daiGThh 🔗 https://t.co/M6NAnd6FRB 🔗 https://t.co/VPhXKW83JS #CyberCron #VulnAlert #InfoSec https://t.co/BUida682ZX
@cybercronai
12 Apr 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-29918: Negated PCRE ♾♾♾ loop https://t.co/gFP3nd56Kc https://t.co/xhtqdhdOV5
@gothburz
11 Apr 2025
77 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-29918 Infinite Loop Vulnerability in Suricata PCRE Rule Processing Before 7.0.9 https://t.co/NIrpzld1Xb
@VulmonFeeds
10 Apr 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-29918 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infi… https://t.co/MyFHpa0EOE
@CVEnew
10 Apr 2025
119 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2025-29918 | OISF Suricata PCRE detect-engine-content-inspection.c DetectEngineContentInspectionInternal recursion (Nessus ID 233809)) has been published on https://t.co/2OBkIvX4gS
@WolfgangSesin
4 Apr 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9747C005-47BE-4477-9599-5B4177C3579E",
"versionEndExcluding": "7.0.9"
}
],
"operator": "OR"
}
]
}
]