Vulnerabilities > Pion

DATE CVE VULNERABILITY TITLE RISK
2022-05-21 CVE-2022-29189 Classic Buffer Overflow vulnerability in Pion Dtls
Pion DTLS is a Go implementation of Datagram Transport Layer Security.
network
low complexity
pion CWE-120
5.0
2022-05-21 CVE-2022-29190 Infinite Loop vulnerability in Pion Dtls
Pion DTLS is a Go implementation of Datagram Transport Layer Security.
network
low complexity
pion CWE-835
5.0
2022-05-21 CVE-2022-29222 Improper Certificate Validation vulnerability in Pion Dtls
Pion DTLS is a Go implementation of Datagram Transport Layer Security.
network
low complexity
pion CWE-295
5.0
2020-04-19 CVE-2019-20786 Improper Authentication vulnerability in Pion Dtls
handleIncomingPacket in conn.go in Pion DTLS before 1.5.2 lacks a check for application data with epoch 0, which allows remote attackers to inject arbitrary unencrypted data after handshake completion.
network
low complexity
pion CWE-287
7.5