CVE-2026-31937
CVE-2026-31937
7.5
HighPublished:
Last updated:
Source:security-advisories@github.com
Analyzed
Weakness (CWE)
CVSS Vector
v3.1- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- Scope
- Unchanged
- Confidentiality
- None
- Integrity
- None
- Availability
- High
Description
Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a performance degradation. This issue has been patched in version 7.0.15.
References
security-advisories@github.com
https://github.com/OISF/suricata/security/advisories/GHSA-86vg-w8vm-m3ggsecurity-advisories@github.com
https://redmine.openinfosecfoundation.org/issues/8304