CVE-2025-59147
HIGHDescription
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Versions 7.0.11 and below, as well as 8.0.0, are vulnerable to detection bypass when crafted traffic sends multiple SYN packets with different sequence numbers within the same flow tuple, which can cause Suricata to fail to pick up the TCP session. In IDS mode this can lead to a detection and logging bypass. In IPS mode this will lead to the flow getting blocked. This issue is fixed in versions 7.0.12 and 8.0.1.
Is your site exposed to CVE-2025-59147?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| oisf | suricata |
| oisf | suricata |
| oisf | suricata |
| oisf | suricata |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-59147? +
How severe is CVE-2025-59147? +
What products are affected by CVE-2025-59147? +
How do I check if I'm vulnerable to CVE-2025-59147? +
Related Vulnerabilities
Backpropagate is a Python library for fine-tuning large language models on a single GPU. In versions 1.1.0 and 1.1.1, the …
The Client secret is not checked when using the OAuth Password grant type. By exploiting this vulnerability, an attacker could …
In liboauth2 the Demonstrating Proof-of-Possession (DPoP) verifier accepts a proof whose JSON Web Key (jwk) header contains private key material. …
Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / …
DVP80ES3 with Improperly Implemented Security Check for Standard vulnerability.
Whale Browser before 4.33.325.17 allows an attacker to escape the iframe sandbox in a dual-tab environment.