Lucene search
+L

288 matches found

ptsecurity
ptsecurity
added 2025/12/30 12:0 a.m.5 views

PT-2025-53832

Name of the Vulnerable Software and Affected Versions coturn versions 4.6.2r5 through 4.7.0-r4 Description coturn, a free open source implementation of TURN and STUN Server, contains a flaw related to its random number generator. Specifically, the random number generator for nonces and port...

7.7CVSS6.8AI score0.00363EPSS
Exploits0References20
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-15842

Malware in sbrugna...

9.8CVSS9AI score0.02955EPSS
Exploits1References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-25319

Malware in sbrugna...

7.5CVSS7AI score0.01898EPSS
Exploits0References13
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-15845

Malware in sbrugna...

10CVSS7.7AI score0.01897EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-15844

Malware in sbrugna...

7.7CVSS8.4AI score0.00918EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-18850

Malware in sbrugna...

7.2CVSS7AI score0.01318EPSS
Exploits3References12
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-27216

Malware in sbrugna...

7.5CVSS6.5AI score0.06102EPSS
Exploits1References9
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-27215

Malware in sbrugna...

9.8CVSS7AI score0.05116EPSS
Exploits1References10
osv
osv
added 2024/06/15 12:0 a.m.15 views

OPENSUSE-SU-2024:10696-1 coturn-4.5.2-2.2 on GA media

These are all security issues fixed in the coturn-4.5.2-2.2 package on the GA media of openSUSE Tumbleweed...

9.8CVSS7.5AI score0.05116EPSS
Exploits4References3
susecve
susecve
added 2023/02/15 4:3 a.m.4 views

SUSE CVE-2020-4067

In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client an attacker could use their connection to intelligently query coturn to get interesting bytes in the...

7CVSS7AI score0.01898EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 4:3 a.m.5 views

SUSE CVE-2020-6061

An exploitable heap out-of-bounds read vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other misbehavior. An attacker needs to send an HTTPS request to trigger this vulnerability...

9.8CVSS6.9AI score0.05116EPSS
Exploits1References2
susecve
susecve
added 2023/02/15 3:53 a.m.2 views

SUSE CVE-2020-26262

Coturn is free open source implementation of TURN and STUN Server. Coturn before version 4.5.2 by default does not allow peers to connect and relay packets to loopback addresses in the range of 127.x.x.x. However, it was observed that when sending a CONNECT request with the XOR-PEER-ADDRESS value...

7.2CVSS7.1AI score0.01318EPSS
Exploits3References3
redhatcve
redhatcve
added 2022/05/20 11:57 p.m.35 views

CVE-2020-26262

Coturn is free open source implementation of TURN and STUN Server. Coturn before version 4.5.2 by default does not allow peers to connect and relay packets to loopback addresses in the range of 127.x.x.x. However, it was observed that when sending a CONNECT request with the XOR-PEER-ADDRESS value...

7.4CVSS4.3AI score0.01318EPSS
Exploits3References1
openvas
openvas
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2020-0287)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01898EPSS
Exploits0References4
openvas
openvas
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2021-0087)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7AI score0.01318EPSS
Exploits3References4
openvas
openvas
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2020-0254)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.06102EPSS
Exploits2References4
bdu_fstec
bdu_fstec
added 2021/04/06 12:0 a.m.8 views

The vulnerability of the Coturn web server, related to incorrect input validation, allows attackers to access confidential data and compromise its integrity.

The vulnerability of the Coturn web server is related to improper validation of input data. Exploiting this vulnerability allows a remote attacker to access confidential data and compromise its integrity...

7.2CVSS7.2AI score0.01318EPSS
Exploits3References6Affected Software3
osv
osv
added 2021/02/19 10:27 a.m.13 views

MGASA-2021-0087 Updated coturn package fixes a security vulnerability

When sending a CONNECT request with the XOR-PEER-ADDRESS value of 0.0.0.0, a malicious user would be able to relay packets to the loopback interface. Additionally, when coturn is listening on IPv6, which is default, the loopback interface can also be reached by making use of either ::1 or :: as t...

7.2CVSS7AI score0.01318EPSS
Exploits3References3
mageia
mageia
added 2021/02/19 10:27 a.m.36 views

Updated coturn package fixes a security vulnerability

When sending a CONNECT request with the XOR-PEER-ADDRESS value of 0.0.0.0, a malicious user would be able to relay packets to the loopback interface. Additionally, when coturn is listening on IPv6, which is default, the loopback interface can also be reached by making use of either ::1 or :: as t...

7.2CVSS2.9AI score0.01318EPSS
Exploits3References2
fedora
fedora
added 2021/01/20 1:33 a.m.57 views

[SECURITY] Fedora 33 Update: coturn-4.5.2-1.fc33

The Coturn TURN Server is a VoIP media traffic NAT traversal server and gat eway. It can be used as a general-purpose network traffic TURN server/gateway, to o. This implementation also includes some extra features. Supported RFCs: TURN specs: - RFC 5766 - base TURN specs - RFC 6062 - TCP relayin...

7.2CVSS0.8AI score0.01318EPSS
Exploits3
Rows per page
Query Builder