Known Vulnerabilities for Suricata by Suricata-ids
Listed below are 10 of the newest known vulnerabilities associated with "Suricata" by "Suricata-ids".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31937 | Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a perfor... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31935 | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frame... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31934 | Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity is... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31933 | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Surica... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31932 | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency in KRB5 buffering can lead to... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31931 | Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule keyword... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2019-17420 | In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_he... | 5.3 - MEDIUM | 2019-10-10 | 2021-07-21 |
| CVE-2019-16411 | An issue was discovered in Suricata 4.1.4. By sending multiple IPv4 packets that have invalid IPv4Options, the function IPV4O... | 9.8 - CRITICAL | 2019-09-24 | 2019-10-02 |
| CVE-2019-16410 | An issue was discovered in Suricata 4.1.4. By sending multiple fragmented IPv4 packets, the function Defrag4Reassemble in def... | 9.1 - CRITICAL | 2019-09-24 | 2019-10-18 |
| CVE-2019-15699 | An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 (TLS 1.2) packet, the parser f... | 9.1 - CRITICAL | 2019-09-24 | 2019-09-25 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Suricata-ids | Suricata | 5.1.0 | All | All | All |
| Application | Suricata-ids | Suricata | 5.0.0 | - | All | All |
| Application | Suricata-ids | Suricata | 5.0.0 | beta1 | All | All |
| Application | Suricata-ids | Suricata | 5.0.0 | rc1 | All | All |
| Application | Suricata-ids | Suricata | 4.1.6 | All | All | All |
| Application | Suricata-ids | Suricata | 4.1.5 | All | All | All |
| Application | Suricata-ids | Suricata | 4.1.0 | b1 | All | All |
| Application | Suricata-ids | Suricata | 4.1.0 | beta1 | All | All |
| Application | Suricata-ids | Suricata | 4.0.4 | All | All | All |
| Application | Suricata-ids | Suricata | 4.0.3 | All | All | All |
| Application | Suricata-ids | Suricata | 4.0.2 | All | All | All |
| Application | Suricata-ids | Suricata | 4.0.1 | All | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | All | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | - | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | b1 | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | beta1 | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | rc1 | All | All |
| Application | Suricata-ids | Suricata | 4.0.0 | rc2 | All | All |
| Application | Suricata-ids | Suricata | 3.2.5 | All | All | All |
| Application | Suricata-ids | Suricata | 3.2.4 | All | All | All |