Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Title:coturn < Information Disclosure Vulnerability
Summary:coturn is prone to an information disclosure vulnerability.
coturn is prone to an information disclosure vulnerability.

Vulnerability Insight:
In coturn there is an issue whereby STUN/TURN response buffer is not
initialized properly. There is a leak of information between different client connections. One client (an
attacker) could use their connection to intelligently query coturn to get interesting bytes in the padding
bytes from the connection of another client.

Affected Software/OS:
coturn prior to version

Update to version or later.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-4067
Debian Security Information: DSA-4711 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:0937 (Google Search)
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2020 E-Soft Inc. All rights reserved.