All 2 CVE vulnerabilities found in ngtcp2, with AI-generated Chinese analysis, references, and POCs.
Vendor: ngtcp2
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-40170 | ngtcp2 has a qlog transport parameter serialization stack buffer overflow CWE-121 | 7.5 | High | 2026-04-16 |
| CVE-2024-52811 | Acks not validated before logged to qlog leads to buffer overflow in ngtcp2 CWE-670 | 8.2 | High | 2024-11-25 |
All 2 known CVE vulnerabilities affecting ngtcp2 with full Chinese analysis, references, and POCs where available.