Description Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency in KRB5 buffering can lead to performance degradation. This issue has been patched in versions 7.0.15 and 8.0.4.
CVSS vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Exploitability: 3.9 | Impact: 3.6 Attack Vector: Network
Complexity: Low
Privileges: None
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: High
Affected Packages3 packages
🔴 Vulnerability Details3 OSV CVE-2026-31932: (Suricata is a network IDS, IPS and NSM engine ↗ 2026-04-03 ▶ CVEList Suricata krb5: quadratic complexity in krb5 buffering ↗ 2026-04-02 ▶ OSV CVE-2026-31932: Suricata is a network IDS, IPS and NSM engine ↗ 2026-04-02 ▶
📋 Vendor Advisories2 Red Hat Suricata: Suricata: Denial of Service due to inefficiency in KRB5 buffering ↗ 2026-04-02 ▶ Debian CVE-2026-31932: suricata - Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.... ↗ 2026 ▶
🕵️ Threat Intelligence13 Wiz CVE-2026-22262 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-22264 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31937 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31935 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31932 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Show 8 more