CVE-2026-31812
Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attac
CVSS
5.3
Medium
EPSS
0.5%
p39
KEV
—
Exploit Today
12
0-100
Published: Mar 10, 2026 · Last modified: Jul 15, 2026 · CWE-248
Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable quinn versions by sending a crafted QUIC Initial packet containing malformed quic_transport_parameters. In quinn-proto parsing logic, attacker-controlled varints are decoded with unwrap(), so truncated encodings cause Err(UnexpectedEnd) and panic. This is reachable over the network with a single packet and no prior trust or authentication. This vulnerability is fixed in 0.11.14.
- github.comhttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:13545
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:19712
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:22862
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:5459
- access.redhat.comhttps://access.redhat.com/security/cve/CVE-2026-31812
- bugzilla.redhat.comhttps://bugzilla.redhat.com/show_bug.cgi?id=2446330
- security.access.redhat.comhttps://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-31812.json