Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
3253 articles · 170411 vulns · 37/41 feeds (7d)
← Back to list
EST
PRE-CVEPATCHED
erlang · otp and ssl (otp)

Denial-of-Service Vulnerabilities in Erlang OTP and SSL

72% confidence

Description

Multiple denial-of-service vulnerabilities affecting Erlang OTP and SSL products, including TLS 1.3 server using session tickets and DTLS denial of service issues.

Affected Products

VendorProductVersions
erlangotp and ssl (otp)OTP versions prior to 27.3.4.14, OTP versions prior to 28.5.0.3, OTP versions prior to 29.0.3, SSL (OTP) versions prior to 11.7.3, SSL (OTP) versions prior to 11.6.0.3, SSL (OTP) versions prior to 11.2.12.10
CISA KEV❌ No
Actively exploited❌ No
Patch available
27.3.4.1428.5.0.329.0.3 for OTP; 11.7.311.6.0.311.2.12.10 for SSL (OTP)
PublishedJul 3, 2026
Last enriched3h ago
Tags
denial-of-servicetls 1.3dtlssession tickets
Trending Score20
Source articles1
Independent1
Info Completeness6/14
Missing: cve_id, cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

NONECVE-2026-55950EXP
DTLS listener crash via race condition in dtls_packet_demux causes denial of service for all sessions
Trending: 58
NONECVE-2026-55952EXP
TLS 1.3 server denial of service via malformed ClientHello pre-shared key extension
Trending: 52
NONECVE-2026-54886EXP
SSH SFTP server denial of service via extended channel data infinite loop
Trending: 49
NONECVE-2026-53422
SFTP REALPATH path-existence oracle allowing filesystem enumeration outside configured root
Trending: 30
NONECVE-2026-54887
DTLS server cookie bypass during startup window due to empty initial cookie secret
Trending: 30

Pin to Dashboard

Verification

State: merged
Confidence: 72%

Vulnerability Timeline

CVE Published
Jul 3, 2026
Patch Available
Jul 3, 2026
Discovered by ZDM
Jul 3, 2026