Vulnerability - CVE-2026-31937

Name

CVE-2026-31937

Source

NVD ( link)Debian ( link)

Description

Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a performance degradation. This issue has been patched in version 7.0.15.

CWEs

CWE-407

Published Date

Apr 2, 2026

Updated Date

Jun 17, 2026

Workaround

Advisories

https://github.com/OISF/suricata/security/advisories/GHSA-86vg-w8vm-m3ggVendor Advisory

https://redmine.openinfosecfoundation.org/issues/8304Issue Tracking

Analysis#

Affected Component

Analysis

suricata

Exploitable

Vulnerability Ratings#

7.5

CVSSv31

NaN

other

Others affected component#

Name

Project

Project Version

Version

Status

suricata

buildroot

master

8.0.4

Not Affected