PT-2026-54849 · Pion Dtls · Pion Dtls
Kajaaz
·
Published
2026-07-01
·
Updated
2026-07-01
·
CVE-2026-54908
CVSS v4.0
6.3
Medium
| Vector | AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Pion DTLS versions prior to 3.1.4
Description
A remote denial of service occurs when the software parses a specially crafted ECDHE PSK ServerKeyExchange message, leading to a panic. A panic is a runtime error in Go that causes the program to crash.
Recommendations
Update to version 3.1.4.
Exploit
Fix
DoS
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Pion Dtls