iotex-core icon indicating copy to clipboard operation
iotex-core copied to clipboard

Published 20 hours ago verified publisher icon iotexproject

vulnerability in iotex-core project

Open ankitdn opened this issue 6 months ago • 0 comments

While working on the iotex-core project, we discovered a critical vulnerability in the Go package Pion Interceptor(this dependency used by iotex-core), tracked as CVE-2025-49140. This vulnerability affects versions v0.1.36 through v0.1.38 and allows an attacker to remotely crash applications using Pion-based SFU (Selective Forwarding Unit) implementations.

CVE Link CVE Report

ankitdn avatar Jun 10 '25 16:06 ankitdn