CVE-2026-22262

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 8.0.3 Suricata versions prior to 7.0.14

Description Suricata is a network IDS, IPS and NSM engine. A stack buffer overflow can occur while saving a dataset due to the use of a stack buffer to prepare the data. If the data in the dataset is too large, this can lead to a stack overflow. Exploitation of this issue may allow a remote attacker to cause a denial of service or potentially achieve code execution.

Recommendations Update Suricata to version 8.0.3 or later. Update Suricata to version 7.0.14 or later. As a workaround, do not use rules with datasets save nor state options.

Exploit

Fix

DoS

Memory Corruption

NULL Pointer Dereference

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-476CWE-121

Related Identifiers

BDU:2026-00956

CVE-2026-22262

GHSA-9QG5-2GWH-XP86

OPENSUSE-SU-2026:10082-1

Affected Products

Suricata

CVE-2026-22262

Weakness Enumeration

Related Identifiers

Affected Products

References · 36