Medium severity5.3OSV Advisory· Published Feb 20, 2025· Updated Apr 15, 2026
CVE-2025-24946
CVE-2025-24946
Description
The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (SCIDs).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2draft-16-final+ 1 more
- (no CPE)range: draft-16-final
- (no CPE)range: < b80fd3f
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.