CVE-2026-48860
CVE-2026-48860 affects Erlang/OTP’s TLS-based distribution via the inet_tls_dist.erl check_ip/1, which enforces a LAN allowlist, uses inet:sockname/1 (local address) instead of inet:peername/1, causing the peer’s subnet validation to be bypassed. Any holder of a CA-signed TLS certificate can bypa...