Security: coturn/coturn
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
IPv4-mapped IPv6 (::ffff:0:0/96) bypasses denied-peer-ip ACL (not covered by CVE-2020-26262 fix)GHSA-j8mm-mpf8-gvjg published
Feb 23, 2026 by eakralyHigh -
Unsafe nonce and relay port randomization due to weak random number generation.GHSA-fvj6-9jhg-9j84 published
Dec 30, 2025 by eakralyHigh -
Loopback bypass by using 0.0.0.0, [::1] or [::] as the peer addressGHSA-6g6j-r9rf-cm7p published
Jan 11, 2021 by misiHigh -
STUN response buffer not initialized properlyGHSA-c8r8-8vp5-6gcm published
Jun 29, 2020 by misiHigh
Learn more about advisories related to coturn/coturn in the GitHub Advisory Database