Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Versions 7.0.11 and below, as well as 8.0.0, are vulnerable to detection bypass when crafted traffic sends multiple SYN packets with different sequence numbers within the same flow tuple, which can cause Suricata to fail to pick up the TCP session. In IDS mode this can lead to a detection and logging bypass. In IPS mode this will lead to the flow getting blocked. This issue is fixed in versions 7.0.12 and 8.0.1.

INFO

Published Date :

2025-10-01T19:27:55.639Z

Last Modified :

2025-10-01T19:42:24.032Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-59147 vulnerability.

Vendors Products
Oisf
  • Suricata
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-59147.

URL Resource
https://forum.suricata.io/t/suricata-8-0-1-and-7-0-12-released/6018 cve-icon cve-icon
https://github.com/OISF/suricata/commit/be6315dba0d9101b11d16e9dacfe2822b3792f1b cve-icon cve-icon
https://github.com/OISF/suricata/commit/e91b03c90385db15e21cf1a0e85b921bf92b039e cve-icon cve-icon
https://github.com/OISF/suricata/security/advisories/GHSA-v8hv-6v7x-4c2r cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact