Primary

Context

Suricata Network IDS/IPS Performance Degradation Vulnerability in Stream Inspection

Vulnerability

Patched

A performance degradation vulnerability has been identified in Suricata, a network IDS, IPS, and NSM engine, prior to versions 7.0.15 and 8.0.4. This vulnerability allows specially crafted traffic to slow down Suricata, adversely affecting its performance in IDS mode. The issue has been addressed in versions 7.0.15 and 8.0.4.

Impact

Exploitation of this vulnerability leads to a significant slowdown of Suricata, causing performance issues in IDS mode.

Remediation

Users can upgrade to Suricata versions 8.0.4 or 7.0.15 to address this vulnerability.

Added: Apr 2, 2026, 2:25 PM

Updated: Apr 2, 2026, 2:25 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.7

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.7

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Suricata Network IDS/IPS Performance Degradation Vulnerability in Stream Inspection

Vulnerability

Impact

Remediation

Affected Products

OISF Suricata

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating