CVE-2026-26014

Usage of random nonce generation with AES GCM ciphers risks leaking the authentication key in github.com/pion/dtls

Description

Usage of random nonce generation with AES GCM ciphers risks leaking the authentication key in github.com/pion/dtls

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

5.9

Severity

Medium

Ecosystem

GO

Publish Date

February 19, 2026

Modified Date

February 20, 2026

Score Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Versions