CVE-2026-31933
CVE-2026-31933
7.5
HighPublished:
Last updated:
Source:security-advisories@github.com
Analyzed
Weakness (CWE)
CVSS Vector
v3.1- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- Scope
- Unchanged
- Confidentiality
- None
- Integrity
- None
- Availability
- High
Description
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Suricata to slow down, affecting performance in IDS mode. This issue has been patched in versions 7.0.15 and 8.0.4.
References
security-advisories@github.com
https://github.com/OISF/suricata/security/advisories/GHSA-hvp5-gpr6-j4gpsecurity-advisories@github.com
https://redmine.openinfosecfoundation.org/issues/8272