PT-2026-54849 · Pion Dtls · Pion Dtls

Kajaaz

·

Published

2026-07-01

·

Updated

2026-07-01

·

CVE-2026-54908

CVSS v4.0

6.3

Medium

VectorAV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions Pion DTLS versions prior to 3.1.4
Description A remote denial of service occurs when the software parses a specially crafted ECDHE PSK ServerKeyExchange message, leading to a panic. A panic is a runtime error in Go that causes the program to crash.
Recommendations Update to version 3.1.4.

Exploit

Fix

DoS

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-54908
GHSA-WG4G-WM44-CH5J

Affected Products

Pion Dtls