top of page
perceptive_background_267k.jpg

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mimeā€¦

Published:

1 april 2026 om 22:00:00

Alert date:

2 april 2026 om 16:03:28

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Security Tools

A quadratic complexity vulnerability affects Suricata network IDS/IPS/NSM engine versions 8.0.0 to before 8.0.4. The issue occurs when searching for URLs in MIME encoded messages over SMTP protocol, causing significant performance degradation. This vulnerability can be exploited to cause denial of service through resource exhaustion. The issue has been resolved in Suricata version 8.0.4. Organizations running affected versions should upgrade immediately to prevent potential service disruption.

Technical details

Mitigation steps:

Affected products:

Suricata

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-31934
https://github.com/OISF/suricata/security/advisories/GHSA-hr89-h2pp-f3c8
https://redmine.openinfosecfoundation.org/issues/8292

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page