CVE-2026-31935: CWE-400: Uncontrolled Resource Consumption in OISF suricata
CVE-2026-31935 is a high-severity vulnerability in the OISF Suricata network IDS/IPS/NSM engine. It involves uncontrolled resource consumption caused by flooding crafted HTTP2 continuation frames, which can exhaust memory and typically cause the Suricata process to be terminated by the operating system. This issue affects Suricata versions prior to 7. 0. 15 and versions from 8. 0. 0 up to but not including 8. 0. 4. The vulnerability has been patched in versions 7.
AI Analysis
Technical Summary
Suricata, a network intrusion detection and prevention system, is vulnerable to a denial-of-service condition due to uncontrolled resource consumption (CWE-400) triggered by flooding with crafted HTTP2 continuation frames. This leads to memory exhaustion and typically results in the Suricata process being shut down by the operating system, causing a denial of service. The vulnerability affects versions earlier than 7.0.15 and versions 8.0.0 through 8.0.3. The issue has been addressed in Suricata versions 7.0.15 and 8.0.4.
Potential Impact
Successful exploitation causes memory exhaustion on the system running Suricata, leading to the termination of the Suricata process by the operating system. This results in a denial of service, potentially disrupting network intrusion detection and prevention capabilities. There is no impact on confidentiality or integrity according to the CVSS vector.
Mitigation Recommendations
Upgrade Suricata to version 7.0.15 or later, or to version 8.0.4 or later, where this vulnerability has been patched. No other mitigation is indicated or required.
CVE-2026-31935: CWE-400: Uncontrolled Resource Consumption in OISF suricata
Description
CVE-2026-31935 is a high-severity vulnerability in the OISF Suricata network IDS/IPS/NSM engine. It involves uncontrolled resource consumption caused by flooding crafted HTTP2 continuation frames, which can exhaust memory and typically cause the Suricata process to be terminated by the operating system. This issue affects Suricata versions prior to 7. 0. 15 and versions from 8. 0. 0 up to but not including 8. 0. 4. The vulnerability has been patched in versions 7.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Suricata, a network intrusion detection and prevention system, is vulnerable to a denial-of-service condition due to uncontrolled resource consumption (CWE-400) triggered by flooding with crafted HTTP2 continuation frames. This leads to memory exhaustion and typically results in the Suricata process being shut down by the operating system, causing a denial of service. The vulnerability affects versions earlier than 7.0.15 and versions 8.0.0 through 8.0.3. The issue has been addressed in Suricata versions 7.0.15 and 8.0.4.
Potential Impact
Successful exploitation causes memory exhaustion on the system running Suricata, leading to the termination of the Suricata process by the operating system. This results in a denial of service, potentially disrupting network intrusion detection and prevention capabilities. There is no impact on confidentiality or integrity according to the CVSS vector.
Mitigation Recommendations
Upgrade Suricata to version 7.0.15 or later, or to version 8.0.4 or later, where this vulnerability has been patched. No other mitigation is indicated or required.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-10T15:10:10.654Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69ce82f2e6bfc5ba1de1d947
Added to database: 4/2/2026, 2:53:38 PM
Last enriched: 4/9/2026, 10:54:20 PM
Last updated: 5/20/2026, 8:52:58 PM
Views: 53
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.