CVE-2026-6328

Summary

Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic on Linux (QUIC protocol implementation, packet processing module, STREAM frame handler modules) allows Protocol Manipulation.This issue affects XQUIC: through 1.8.3.

Affected Software

VendorProductVersion RangeStatus
XQUIC ProjectXQUIC0 <= 1.8.3affected

Weaknesses

  • CWE-20: CWE-20 Improper input validation
  • CWE-347: CWE-347 Improper verification of cryptographic signature

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References