CVE-2026-6328 | THREATINT

Description

Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic on Linux (QUIC protocol implementation, packet processing module, STREAM frame handler modules) allows Protocol Manipulation.This issue affects XQUIC: through 1.8.3.

PUBLISHED Reserved 2026-04-15 | Published 2026-04-15 | Updated 2026-04-15 | Assigner alibaba

HIGH: 8.3CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-20 Improper input validation

CWE-347 Improper verification of cryptographic signature

Product status

Default status

unaffected

Any version

affected

References

github.com/...ommit/4764604a0e487eeb49338b4498aecda2194eae84

cve.org (CVE-2026-6328)

nvd.nist.gov (CVE-2026-6328)

Download JSON