CVE-2026-31933: CWE-407: Inefficient Algorithmic Complexity in OISF suricata
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Suricata to slow down, affecting performance in IDS mode. This issue has been patched in versions 7.0.15 and 8.0.4.
AI Analysis
Technical Summary
Suricata versions before 7.0.15 and between 8.0.0 and 8.0.4 contain an inefficient algorithmic complexity vulnerability (CWE-407) that can be triggered by specially crafted traffic. This causes Suricata to slow down significantly in IDS mode, impacting availability by degrading performance. The vulnerability has a CVSS 3.1 score of 7.5, indicating high severity due to network attack vector, low attack complexity, no privileges required, no user interaction, and impact limited to availability. Official patches addressing this issue were released in versions 7.0.15 and 8.0.4.
Potential Impact
The vulnerability allows an attacker to cause a denial of service condition by slowing down Suricata's IDS processing through crafted traffic. There is no impact on confidentiality or integrity. The primary impact is availability degradation, which could reduce the effectiveness of network monitoring and intrusion detection during an attack.
Mitigation Recommendations
This vulnerability has been officially patched in Suricata versions 7.0.15 and 8.0.4. Users should upgrade to these or later versions to remediate the issue. Since this is not a cloud service, remediation depends on applying these updates. No additional mitigations are specified by the vendor advisory.
CVE-2026-31933: CWE-407: Inefficient Algorithmic Complexity in OISF suricata
Description
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Suricata to slow down, affecting performance in IDS mode. This issue has been patched in versions 7.0.15 and 8.0.4.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Suricata versions before 7.0.15 and between 8.0.0 and 8.0.4 contain an inefficient algorithmic complexity vulnerability (CWE-407) that can be triggered by specially crafted traffic. This causes Suricata to slow down significantly in IDS mode, impacting availability by degrading performance. The vulnerability has a CVSS 3.1 score of 7.5, indicating high severity due to network attack vector, low attack complexity, no privileges required, no user interaction, and impact limited to availability. Official patches addressing this issue were released in versions 7.0.15 and 8.0.4.
Potential Impact
The vulnerability allows an attacker to cause a denial of service condition by slowing down Suricata's IDS processing through crafted traffic. There is no impact on confidentiality or integrity. The primary impact is availability degradation, which could reduce the effectiveness of network monitoring and intrusion detection during an attack.
Mitigation Recommendations
This vulnerability has been officially patched in Suricata versions 7.0.15 and 8.0.4. Users should upgrade to these or later versions to remediate the issue. Since this is not a cloud service, remediation depends on applying these updates. No additional mitigations are specified by the vendor advisory.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-10T15:10:10.654Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69ce7bd9e6bfc5ba1ddfe6da
Added to database: 4/2/2026, 2:23:21 PM
Last enriched: 4/9/2026, 10:45:17 PM
Last updated: 5/20/2026, 8:50:23 PM
Views: 59
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.