CVE-2025-29918

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-29918
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9.

5.5 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/OISF/suricata/commit/b14c67cbdf25fa6c7ffe0d04ddf3ebe67b12b50b Patch
https://github.com/OISF/suricata/security/advisories/GHSA-924c-vvm5-9mqx Vendor Advisory
https://redmine.openinfosecfoundation.org/issues/7526 Permissions Required
Configurations

Configuration 1 (hide)

cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:*
History

29 May 2025, 15:49

Type Values Removed Values Added
CPE cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
First Time Oisf suricata
Oisf
References () https://github.com/OISF/suricata/commit/b14c67cbdf25fa6c7ffe0d04ddf3ebe67b12b50b - () https://github.com/OISF/suricata/commit/b14c67cbdf25fa6c7ffe0d04ddf3ebe67b12b50b - Patch
References () https://github.com/OISF/suricata/security/advisories/GHSA-924c-vvm5-9mqx - () https://github.com/OISF/suricata/security/advisories/GHSA-924c-vvm5-9mqx - Vendor Advisory
References () https://redmine.openinfosecfoundation.org/issues/7526 - () https://redmine.openinfosecfoundation.org/issues/7526 - Permissions Required

10 Apr 2025, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-04-10 21:15

Updated : 2025-05-29 15:49

NVD link : CVE-2025-29918

Mitre link : CVE-2025-29918

JSON object : View

Products Affected

oisf

  • suricata
CWE
CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')