CVE-2026-43994 | Coturn up to 4.9.x OAuth Access Token decode_oauth_token_gcm buffer overflow (GHSA-74pg-rfh2-5qw5)

A vulnerability has been found in Coturn up to 4.9.x and classified as critical. This issue affects the function decode_oauth_token_gcm of the component OAuth Access Token Handler. This manipulation causes buffer overflow.

This vulnerability is tracked as CVE-2026-43994. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More