Lucene search
K

8 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2026/03/19 12:0 a.m.5 views

coturn-4.9.0-1.1 on GA media (moderate)

coturn-4.9.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10375-1 Rating: moderate Cross-References: CVE-2025-69217 CVE-2026-27624 CVSS scores: CVE-2025-69217 SUSE : 7.7 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves 2 vulnerabilitie...

7.7CVSS5.8AI score0.00363EPSS
Exploits1
OpenVAS
OpenVAS
added 2026/03/10 12:0 a.m.2 views

Mageia: Security Advisory (MGASA-2026-0051)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS5.8AI score0.00254EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/03/07 12:0 a.m.6 views

Fedora 44 : coturn (2026-379e214a37)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-379e214a37 advisory. Coturn 4.9.0 - Multiple security fixes - Fix to Web Admin password check - Cleanup of deprecated OpenSSL APIs - Fix for CVE-2026-27624: Bypass...

7.2CVSS5.9AI score0.00254EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.1 views

Fedora 42 : coturn (2026-2a1aa1f57f)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2a1aa1f57f advisory. Coturn 4.9.0 - Multiple security fixes - Fix to Web Admin password check - Cleanup of deprecated OpenSSL APIs - Fix for CVE-2026-27624: Bypass...

7.2CVSS5.9AI score0.00254EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/02/26 12:24 a.m.4 views

SUSE CVE-2026-27624

Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied-peer-ip" and/or default loopback restrictions. CVE-2020-26262 addressed bypasses involving "0.0.0.0", "::1" and "::", but IPv4-mapped IPv6 is not...

6.5CVSS5.8AI score0.00254EPSS
Exploits1References3
OSV
OSV
added 2026/02/25 4:4 a.m.2 views

CVE-2026-27624 Coturn: IPv4-mapped IPv6 (::ffff:0:0/96) bypasses denied-peer-ip ACL

Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied-peer-ip" and/or default loopback restrictions. CVE-2020-26262 addressed bypasses involving "0.0.0.0", "::1" and "::", but IPv4-mapped IPv6 is not...

7.2CVSS5.6AI score0.00254EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/02/25 4:4 a.m.20 views

CVE-2026-27624 Coturn: IPv4-mapped IPv6 (::ffff:0:0/96) bypasses denied-peer-ip ACL

Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied-peer-ip" and/or default loopback restrictions. CVE-2020-26262 addressed bypasses involving "0.0.0.0", "::1" and "::", but IPv4-mapped IPv6 is not...

7.2CVSS0.00254EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/25 4:4 a.m.7 views

CVE-2026-27624

Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied-peer-ip" and/or default loopback restrictions. CVE-2020-26262 addressed bypasses involving "0.0.0.0", "::1" and "::", but IPv4-mapped IPv6 is not...

7.2CVSS5.5AI score0.01282EPSS
Exploits4References4Affected Software1
Rows per page
Query Builder