Philippe Antoine

29 exploits Active since Apr 2020
CVE-2026-22260 WRITEUP HIGH WRITEUP
Oisf Suricata < 8.0.3 - Out-of-Bounds Write
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, Suricata can crash with a stack overflow. Version 8.0.3 patches the issue. As a workaround, use default values for `request-body-limit` and `response-body-limit`.
CVSS 7.5
CVE-2026-22261 WRITEUP LOW WRITEUP
Suricata <8.0.3-7.0.14 - Info Disclosure
Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, various inefficiencies in xff handling, especially for alerts not triggered in a tx, can lead to severe slowdowns. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, disable XFF support in the eve configuration. The setting is disabled by default.
CVSS 3.7
CVE-2026-22262 WRITEUP MEDIUM WRITEUP
Oisf Suricata < 7.0.14 - Out-of-Bounds Write
Suricata is a network IDS, IPS and NSM engine. While saving a dataset a stack buffer is used to prepare the data. Prior to versions 8.0.3 and 7.0.14, if the data in the dataset is too large, this can result in a stack overflow. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not use rules with datasets `save` nor `state` options.
CVSS 5.9
CVE-2026-22263 WRITEUP MEDIUM WRITEUP
Suricata <8.0.3 - DoS
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available.
CVSS 5.3