coturn project

Top products

The 9 most recently published vulnerabilities affecting coturn project.

• CVE-2026-40613Coturn: Misaligned Memory Access in coturn STUN Attribute Parser (Remote DoS on ARM64)7.5Apr 21, 2026
• CVE-2026-27624Coturn: IPv4-mapped IPv6 (::ffff:0:0/96) bypasses denied-peer-ip ACL7.2Feb 25, 2026
• CVE-2020-26262Loopback bypass in Coturn7.2Jan 13, 2021
• CVE-2020-4067Improper Initialization in coturn7.0Jun 29, 2020
• CVE-2020-6061An exploitable heap out-of-bounds read vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other ...9.8Feb 19, 2020
• CVE-2020-6062An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service...7.5Feb 19, 2020
• CVE-2018-4059An exploitable unsafe default configuration vulnerability exists in the TURN server function of coTURN prior to version 4.5.0.9. By default, the TURN server runs an unauthenticated telnet admin por...9.8Mar 21, 2019
• CVE-2018-4058An exploitable unsafe default configuration vulnerability exists in the TURN server functionality of coTURN prior to 4.5.0.9. By default, the TURN server allows relaying external traffic to the loo...7.7Mar 21, 2019
• CVE-2018-4056An exploitable SQL injection vulnerability exists in the administrator web portal function of coTURN prior to version 4.5.0.9. A login message with a specially crafted username can cause an SQL inj...9.8Feb 5, 2019