Vulnerability in Erlang Otp

CVE-2026-55950

Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Erlang/OTP ssl (dtls_packet_demux module) allows an unauthenticated remote attacker to crash all active DTLS sessions on a listener. A DTLS server listener uses a single s…

Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)

Affected products

  • Erlang Otp — versions 10.9, 25.3, 44dcb4c3d900777493ce2a6129f451aa475811f9

Weakness classification (CWE)

References