PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-31984 Nozomi Networks CVE debrief

CVE-2026-31984 is a denial-of-service vulnerability caused by unbounded resource allocation in the audit logging functionality of Nozomi Networks products. The vulnerability is due to a missing size limit on input recorded into audit entries. An unauthenticated attacker can submit requests containing excessively large input that is recorded into audit entries, possibly exhausting the available disk space and rendering the system inoperable.

Vendor
Nozomi Networks
Product
Guardian
CVSS
HIGH 8.7
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-09
Original CVE updated
2026-07-10
Advisory published
2026-07-09
Advisory updated
2026-07-10

Who should care

Security teams and administrators responsible for Nozomi Networks products, particularly those using the CMC and Guardian products with versions older than 26.2.0, should prioritize patching this vulnerability to prevent potential denial-of-service attacks.

Technical summary

The CVE-2026-31984 vulnerability has a CVSS score of 8.7 and is classified as HIGH severity. It affects Nozomi Networks products, specifically CMC and Guardian, with versions older than 26.2.0. The vulnerability is caused by a missing size limit on input recorded into audit entries, allowing unauthenticated attackers to submit large input and potentially exhaust disk space, rendering the system inoperable.

Defensive priority

High priority should be given to patching CVE-2026-31984, as it is a denial-of-service vulnerability with a high CVSS score. Security teams should ensure that Nozomi Networks products are updated to version 26.2.0 or later to prevent potential attacks.

Recommended defensive actions

  • Patch Nozomi Networks products to version 26.2.0 or later
  • Implement compensating controls to monitor and limit large input submissions
  • Conduct regular inventory checks to ensure all affected products are updated
  • Monitor system logs for potential denial-of-service attacks
  • Consider implementing additional security measures to prevent similar attacks

Evidence notes

The CVE-2026-31984 vulnerability was discovered in the audit logging functionality of Nozomi Networks products. The vulnerability is caused by a missing size limit on input recorded into audit entries, allowing unauthenticated attackers to submit large input and potentially exhaust disk space. The NVD entry for this vulnerability provides additional details, including the CVSS vector and CPE criteria.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-09T08:16:47.940Z and has not been modified since then.