VYPR

Maven package

tech.kwik/kwik

pkg:maven/tech.kwik/kwik

Vulnerabilities (2)

  • CVE-2025-23020MedFeb 20, 2025
    affected < 0.10.1fixed 0.10.1

    An issue was discovered in Kwik before 0.10.1. A hash collision vulnerability (in the hash table used to manage connections) allows remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (

  • CVE-2024-22588MedMay 24, 2024
    affected < 0.8fixed 0.8

    Kwik commit 745fd4e2 does not discard unused encryption keys.