top of page
perceptive_background_267k.jpg

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frames can lead to memory exhaustion, us…

Published:

1 April 2026 at 22:00:00

Alert date:

2 April 2026 at 16:03:28

Source:

nvd.nist.gov

Click to open the original link from this advisory

Security Tools, Network Infrastructure

A denial-of-service vulnerability exists in Suricata network IDS/IPS/NSM engine prior to versions 7.0.15 and 8.0.4. The vulnerability allows attackers to flood the system with crafted HTTP2 continuation frames, leading to memory exhaustion and causing the Suricata process to be shut down by the operating system. This affects the availability of the security monitoring system, potentially leaving networks unprotected. The issue has been patched in Suricata versions 7.0.15 and 8.0.4, and users should upgrade immediately to mitigate this risk.

Technical details

Mitigation steps:

Affected products:

Suricata

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-31935
https://github.com/OISF/suricata/security/advisories/GHSA-vxrp-5pg7-7v4x
https://redmine.openinfosecfoundation.org/issues/8289

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page