Ghostwire

CVE-2026-6328: Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic...

HIGH CVSS 7.5 EPSS 0.06%

Published: April 15, 2026 | Last Modified: April 15, 2026

Description

Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic on Linux (QUIC protocol implementation, packet processing module, STREAM frame handler modules) allows Protocol Manipulation.This issue affects XQUIC: through 1.8.3.

Ghostwire Analysis — What This Means Practically

Exploitation Probability (EPSS): Low — 0.06% (18th percentile)

Low exploitation probability based on current threat landscape data. Standard patching timeline is appropriate.

High CVSS score indicates significant risk — exploitation could lead to substantial data exposure or system compromise.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

CVE-2026-6328: Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic...

Description

Ghostwire Analysis — What This Means Practically

Security Coverage (1 articles)

References