CVE-2025-24946

Name of the Vulnerable Software and Affected Versions picoquic versions before b80fd3f

Description The hash table used to manage connections in picoquic uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server by initiating connections with colliding Source Connection IDs (SCIDs), resulting in a Hash DoS attack.

Recommendations For picoquic versions before b80fd3f, update to a version after b80fd3f to resolve the issue. As a temporary workaround, consider implementing measures to detect and prevent connections with colliding Source Connection IDs (SCIDs) to minimize the risk of exploitation.