Known Vulnerabilities for Suricata by Suricata-ids
Listed below are 10 of the newest known vulnerabilities associated with "Suricata" by "Suricata-ids".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31937 json | Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a perfor... | Not Provided | 2026-04-02 | 2026-04-03 |
| CVE-2026-31935 json | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frame... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31934 json | Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity is... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31933 json | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause Surica... | Not Provided | 2026-04-02 | 2026-04-03 |
| CVE-2026-31932 json | Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency in KRB5 buffering can lead to... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-31931 json | Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule keyword... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2019-18792 json | An issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by overlapping a TCP segmen... | 9.1 - CRITICAL | 2020-01-06 | 2021-07-21 |
| CVE-2019-18625 json | An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP ses... | 7.5 - HIGH | 2020-01-06 | 2023-02-01 |
| CVE-2019-17420 json | In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_he... | 5.3 - MEDIUM | 2019-10-10 | 2021-07-21 |
| CVE-2019-16411 json | An issue was discovered in Suricata 4.1.4. By sending multiple IPv4 packets that have invalid IPv4Options, the function IPV4O... | 9.8 - CRITICAL | 2019-09-24 | 2019-10-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Suricata-ids | Suricata | 5.1.0 | |||
| Application | Suricata-ids | Suricata | 5.0.0 | |||
| Application | Suricata-ids | Suricata | 5.0.0 | |||
| Application | Suricata-ids | Suricata | 5.0.0 | |||
| Application | Suricata-ids | Suricata | 4.1.6 | |||
| Application | Suricata-ids | Suricata | 4.1.5 | |||
| Application | Suricata-ids | Suricata | 4.1.0 | |||
| Application | Suricata-ids | Suricata | 4.1.0 | |||
| Application | Suricata-ids | Suricata | 4.0.4 | |||
| Application | Suricata-ids | Suricata | 4.0.3 | |||
| Application | Suricata-ids | Suricata | 4.0.2 | |||
| Application | Suricata-ids | Suricata | 4.0.1 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 4.0.0 | |||
| Application | Suricata-ids | Suricata | 3.2.5 | |||
| Application | Suricata-ids | Suricata | 3.2.4 |