4 matches found
Suricata 8.x < 8.0.3 Multiple Vulnerabilities
The version of OISF Suricata installed on the remote host is 8.x prior to 8.0.3. It is, therefore, affected by multiple vulnerabilities: - Suricata can crash with a stack overflow due to poorly bounded recursion in HTTP/1 decompression. As a workaround, use default values for request-body-limit a...
CVE-2026-22263
A flaw was found in Suricata, a network Intrusion Detection System IDS, Intrusion Prevention System IPS, and Network Security Monitoring NSM engine. A remote attacker can exploit an inefficiency in HTTP/1 header parsing by sending multiple packets with specially crafted headers. This can lead to ...
CVE-2026-22263 Suricata http1: quadratic complexity in headers parsing over multiple packets
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available...
CVE-2026-22263
creationtimestamp| type| source ---|---|--- 2026-01-14 17:13:53+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115894572299072531...