CVE-2026-31935

High CVSS: 7.5

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frames can lead to memory exhaustion, usually resulting in the Suricata process being shut down by the operating system. This issue has been patched in versions 7.0.15 and 8.0.4.

Vendor

Oisf

Product

Suricata

CWE

CWE-400

Yayın Tarihi

2026-04-02 15:16:37

Güncelleme

2026-04-07 21:20:24

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-400 Suricata HIGH Oisf 2026

Referanslar

https://github.com/OISF/suricata/security/advisories/GHSA-vxrp-5pg7-7v4x https://redmine.openinfosecfoundation.org/issues/8289

Benzer Kayıtlar

High

CVE-2026-31934

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexi…

High

CVE-2026-31937

Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a p…

High

CVE-2026-31931

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule ke…

High

CVE-2026-31932

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency in KRB5 buffering can le…

High

CVE-2026-31933

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause S…

Low

CVE-2026-22261

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, various inefficiencies in xff handlin…