How should we interpret CVSS severity scores?

CVSS estimates technical severity, but it does not automatically equal business risk. Prioritize using context like internet exposure, asset criticality, known exploitation, and whether compensating controls exist. A Medium CVSS on an exposed production system can be more urgent than a Critical on an isolated non-production host.

Vulnerability Database

Q: What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

Q: What's the difference between a vulnerability, an exploit, and a zero-day?

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. Risk increases sharply when exploitation becomes reliable or widespread.

Q: Why do vulnerabilities keep reappearing in our environment?

Recurring findings usually come from incomplete asset discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host.

Q: How do we prioritize remediation without burning out the team?

Use a repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress so remediation is steady, not reactive.

Q: How can SynScan help reduce vulnerability risk over time?

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.

327,594

Total vulnerabilities in the database

Vulnerabilities for products matching "suricata"

Found 3 matching products. Filters apply to all results.

You can search for specific versions with /product/suricata/1.2.3

openinfosecfoundation / suricata

6 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2017-15377	Medium	October 23, 2017 10/23/17	<= 3.2.4
CVE-2015-8954	High	March 20, 2017 3/20/17	<= 2.0.5
CVE-2017-7177	Medium	March 18, 2017 3/18/17	<= 3.2
CVE-2015-0971	Medium	May 14, 2015 5/14/15	<= 2.0.7
CVE-2014-6603	Medium	October 7, 2014 10/7/14	== 2.0.1-2 == 2.0.2-2 == 2.0.2-1 == 2.0.3-1 == 2.0.1-1 <= 2.0.3-2
CVE-2013-5919	Medium	May 30, 2014 5/30/14	<= 1.4.5 == 1.4

suricata-ids / suricata

14 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2019-17420	Medium	October 10, 2019 10/10/19	== 4.1.4
CVE-2019-15699	Critical	September 24, 2019 9/24/19	== 4.1.4
CVE-2019-16410	Critical	September 24, 2019 9/24/19	== 4.1.4
CVE-2019-16411	Critical	September 24, 2019 9/24/19	== 4.1.4
CVE-2019-10054	Medium	August 28, 2019 8/28/19	== 4.1.3
CVE-2019-10055	High	August 28, 2019 8/28/19	== 4.1.4
CVE-2019-10056	Medium	August 28, 2019 8/28/19	== 4.1.3 == 4.1.4
CVE-2019-10051	Medium	August 28, 2019 8/28/19	== 4.1.3 == 4.1.4
CVE-2019-10052	Medium	August 28, 2019 8/28/19	== 4.1.3
CVE-2019-10053	High	May 13, 2019 5/13/19	>= 4.1.0 < 4.1.4
CVE-2018-18956	Medium	November 5, 2018 11/5/18	>= 4.0.0 < 4.0.6
CVE-2016-10728	Medium	July 23, 2018 7/23/18	< 3.1.2
CVE-2018-14568	Medium	July 23, 2018 7/23/18	< 4.0.5
CVE-2018-6794	Medium	February 7, 2018 2/7/18	< 4.0.4

oisf / suricata

59 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2026-22261	Low	January 27, 2026 1/27/26	< 7.0.14 >= 8.0.0 < 8.0.3
CVE-2026-22262	Medium	January 27, 2026 1/27/26	< 7.0.14 >= 8.0.0 < 8.0.3
CVE-2026-22263	Medium	January 27, 2026 1/27/26	>= 8.0.0 < 8.0.3
CVE-2026-22264	High	January 27, 2026 1/27/26	< 7.0.14 >= 8.0.0 < 8.0.3
CVE-2026-22260	High	January 27, 2026 1/27/26	>= 8.0.0 < 8.0.3
CVE-2026-22258	High	January 27, 2026 1/27/26	< 7.0.14 >= 8.0.0 < 8.0.3
CVE-2026-22259	High	January 27, 2026 1/27/26	< 7.0.14 >= 8.0.0 < 8.0.3
CVE-2025-64344	High	November 26, 2025 11/26/25	< 7.0.13 >= 8.0.0 < 8.0.2
CVE-2025-64330	High	November 26, 2025 11/26/25	< 7.0.13 >= 8.0.0 < 8.0.2
CVE-2025-64332	High	November 26, 2025 11/26/25	< 7.0.13 >= 8.0.0 < 8.0.2
CVE-2025-64333	High	November 26, 2025 11/26/25	< 7.0.13 >= 8.0.0 < 8.0.2
CVE-2025-64334	High	November 26, 2025 11/26/25	>= 8.0.0 < 8.0.2
CVE-2025-64331	High	November 26, 2025 11/26/25	< 7.0.13 >= 8.0.0 < 8.0.2
CVE-2025-64335	High	November 26, 2025 11/26/25	>= 8.0.0 < 8.0.2
CVE-2025-59150	High	October 1, 2025 10/1/25	== 8.0.0
CVE-2025-59147	High	October 1, 2025 10/1/25	< 7.0.12 == 8.0.0 == 8.0.0-beta1 == 8.0.0-rc1
CVE-2025-59148	High	October 1, 2025 10/1/25	== 8.0.0 == 8.0.0-beta1 == 8.0.0-rc1
CVE-2025-59149	Medium	October 1, 2025 10/1/25	== 8.0.0 == 8.0.0-beta1 == 8.0.0-rc1
CVE-2025-53538	High	July 22, 2025 7/22/25	< 7.0.11 == 8.0.0-beta1 == 8.0.0-rc1
CVE-2025-29918	Medium	April 10, 2025 4/10/25	< 7.0.9
CVE-2025-29917	Medium	April 10, 2025 4/10/25	< 7.0.9
CVE-2025-29916	Medium	April 10, 2025 4/10/25	< 7.0.9
CVE-2025-29915	High	April 10, 2025 4/10/25	< 7.0.9
CVE-2024-55629	High	January 6, 2025 1/6/25	< 7.0.8
CVE-2024-55626	Low	January 6, 2025 1/6/25	< 7.0.8
CVE-2024-55627	Medium	January 6, 2025 1/6/25	< 7.0.8
CVE-2024-55628	High	January 6, 2025 1/6/25	< 7.0.8
CVE-2024-55605	High	January 6, 2025 1/6/25	< 7.0.8
CVE-2024-47522	High	October 16, 2024 10/16/24	< 7.0.7
CVE-2024-47187	High	October 16, 2024 10/16/24	< 7.0.7
CVE-2024-47188	High	October 16, 2024 10/16/24	< 7.0.7
CVE-2024-45795	High	October 16, 2024 10/16/24	< 7.0.7
CVE-2024-45796	Medium	October 16, 2024 10/16/24	< 7.0.7
CVE-2024-38536	High	July 11, 2024 7/11/24	< 7.0.6
CVE-2024-38535	High	July 11, 2024 7/11/24	>= 7.0.0 < 7.0.6 < 6.0.20
CVE-2024-38534	High	July 11, 2024 7/11/24	< 7.0.6
CVE-2024-37151	Medium	July 11, 2024 7/11/24	>= 7.0.0 < 7.0.6 >= 6.0.0 < 6.0.20
CVE-2024-32867	Medium	May 7, 2024 5/7/24	>= 6.0.0 < 6.0.19 >= 7.0.0 < 7.0.5
CVE-2024-32663	High	May 7, 2024 5/7/24	>= 6.0.0 < 6.0.19 >= 7.0.0 < 7.0.5
CVE-2024-32664	Medium	May 7, 2024 5/7/24	>= 6.0.0 < 6.0.19 >= 7.0.0 < 7.0.5
CVE-2024-28870	High	April 3, 2024 4/3/24	< 6.0.17 >= 7.0.0 < 7.0.4
CVE-2024-23839	High	February 26, 2024 2/26/24	>= 7.0.0 < 7.0.3
CVE-2024-24568	Medium	February 26, 2024 2/26/24	>= 7.0.0 < 7.0.3
CVE-2024-23835	High	February 26, 2024 2/26/24	>= 7.0.0 < 7.0.3
CVE-2024-23836	High	February 26, 2024 2/26/24	>= 7.0.0 < 7.0.3 < 6.0.16
CVE-2023-35853	Critical	June 19, 2023 6/19/23	< 6.0.13
CVE-2023-35852	High	June 19, 2023 6/19/23	< 6.0.13
CVE-2020-19678	High	April 6, 2023 4/6/23	== 1.4.6
CVE-2021-45098	High	December 16, 2021 12/16/21	< 6.0.4
CVE-2021-37592	Critical	November 19, 2021 11/19/21	>= 6.0.0 < 6.0.4 < 5.0.8

Showing vulnerabilities for 3 products matching "suricata". Each product has independent pagination.

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo

Frequently Asked Questions

What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

CVSS (Common Vulnerability Scoring System) estimates technical severity, but it doesn't automatically equal business risk. Prioritize using context like internet exposure, affected asset criticality, known exploitation (proof-of-concept or in-the-wild), and whether compensating controls exist. A "Medium" CVSS on an exposed, production system can be more urgent than a "Critical" on an isolated, non-production host.

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. In practice, risk increases sharply when exploitation becomes reliable or widespread.

Recurring findings usually come from incomplete Asset Discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host. Unknown or unmanaged assets (often called Shadow IT) are a common reason the same issues resurface.

Use a simple, repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress using consistent metrics so remediation is steady, not reactive.

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.