All 3 CVE vulnerabilities found in webtransport-go, with AI-generated Chinese analysis, references, and POCs.
Vendor: quic-go
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-21438 | webtransport-go affected by a Memory Exhaustion Attack due to Missing Cleanup of Streams Map CWE-401 | 5.3 | Medium | 2026-02-12 |
| CVE-2026-21435 | webtransport-go CloseWithError can block indefinitely CWE-400 | 5.3 | Medium | 2026-02-12 |
| CVE-2026-21434 | webtransport-go affected by Memory Exhaustion Attack due to Missing Length Check in WT_CLOSE_SESSION Capsule CWE-770 | 5.3 | Medium | 2026-02-12 |
All 3 known CVE vulnerabilities affecting webtransport-go with full Chinese analysis, references, and POCs where available.