Volerion logoVolerion
Volerion logoVolerion

Suricata KRB5 Buffering Inefficiency Vulnerability Leading to Performance Degradation

Vulnerability

A vulnerability in Suricata, a network IDS, IPS, and NSM engine, prior to versions 7.0.15 and 8.0.4, allows for performance degradation due to inefficiencies in KRB5 buffering. This issue can be exploited over the network without requiring any privileges or user interaction.

Impact

Exploitation of this vulnerability can cause significant performance degradation.

Remediation

Users can upgrade to Suricata versions 8.0.4 or 7.0.15 to address this vulnerability. Alternatively, the 'krb5' parser can be disabled as a workaround.

Added: Apr 2, 2026, 2:27 PM
Updated: Apr 2, 2026, 2:27 PM

Vulnerability Rating

Custom Algorithm
spread
2.4
impact
2.5
exploitability
4.7
remediation
8.3
relevance
5.1
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.