Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.3, excessive memory use during pgsql parsing could lead to OOM-related crashes. This vulnerability is patched in 7.0.3. As workaround, users can disable the pgsql app layer parser.
CVE ID: CVE-2024-23835
CVSS Base Severity: HIGH
CVSS Base Score: 7.5
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vendor: OISF
Product: suricata
EPSS Score: 0.13% (probability of being exploited)
EPSS Percentile: 48.67% (scored less or equal to compared to others)
EPSS Date: 2025-03-14 (when was this score calculated)