Description Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Suricata to slow down, affecting performance in IDS mode. This issue has been patched in versions 7.0.15 and 8.0.4.
CVSS vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Exploitability: 3.9 | Impact: 3.6 Attack Vector: Network
Complexity: Low
Privileges: None
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: High
Affected Packages3 packages
🔴 Vulnerability Details3 OSV CVE-2026-31933: (Suricata is a network IDS, IPS and NSM engine ↗ 2026-04-03 ▶ CVEList Suricata stream: quadratic complexity in stream inspection ↗ 2026-04-02 ▶ OSV CVE-2026-31933: Suricata is a network IDS, IPS and NSM engine ↗ 2026-04-02 ▶
📋 Vendor Advisories2 Red Hat Suricata: Suricata: Denial of Service due to specially crafted network traffic ↗ 2026-04-02 ▶ Debian CVE-2026-31933: suricata - Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.... ↗ 2026 ▶
🕵️ Threat Intelligence13 Wiz CVE-2026-22262 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-22264 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31937 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31935 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Wiz CVE-2026-31932 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶ Show 8 more