CVE-2026-48860

June 10, 2026, 8:19 p.m.

7.5
High

Description

Reliance on IP Address for Authentication vulnerability in Erlang/OTP ssl (inet_tls_dist module) allows unauthenticated bypass of the distribution-over-TLS LAN allowlist. The inet_tls_dist:check_ip/1 function, which enforces a LAN allowlist for Erlang distribution over TLS, calls inet:sockname/1 instead of inet:peername/1 to obtain the peer's IP address. Because inet:sockname/1 returns the local socket address, both the local IP and the supposed peer IP resolve to the same value, causing the subnet mask comparison to always succeed regardless of the actual remote address. Any holder of a CA-signed TLS certificate can therefore bypass the LAN restriction and gain full Erlang distribution access to the node, including rpc:call/4 and code:load_binary/3. This vulnerability is associated with program file lib/ssl/src/inet_tls_dist.erl. This issue affects OTP from OTP 26.0 before 29.0.2, 28.5.0.2 and 27.3.4.13 corresponding to ssl from 11.0 before 11.7.2, 11.6.0.2 and 11.2.12.9.

Product(s) Impacted

Vendor Product Versions
Erlang
  • Erlang
  • Ssl
  • 26.0-29.0.2
  • <11.0-11.7.2, 11.6.0.2, 11.2.12.9

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-863
Incorrect Authorization
The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a erlang erlang 26.0-29.0.2 / / / / / / /
a erlang ssl <11.0-11.7.2 / / / / / / /
a erlang ssl 11.6.0.2 / / / / / / /
a erlang ssl 11.2.12.9 / / / / / / /

References

https://cna.erlef.org/cves/CVE-2026-48860.html
https://github.com/erlang/otp/commit/0209a6df65d605552b378273027b3968b35f26b4
https://github.com/erlang/otp/security/advisories/GHSA-gp7x-mfv6-52cv
https://osv.dev/vulnerability/EEF-CVE-2026-48860
https://www.erlang.org/doc/system/versions.html#order-of-versions

Tags

CWE-863
6b3ad84c-e1a6-4bf7-a703-f496b71e49db
2026-06-10
CVE-2026-48860

CVSS Score

7.5 / 10

CVSS Data - 4.0

  • Attack Vector: ADJACENT
  • Attack Complexity: HIGH
  • Attack Requirements: PRESENT
  • Privileges Required: LOW
  • User Interaction: NONE
  • Scope:
  • Confidentiality Impact: HIGH
  • Integrity Impact: HIGH
  • Availability Impact: HIGH
  • Exploit Maturity: NOT_DEFINED

    • CVSS:4.0/AV:A/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

    View Vector String

Timeline

Published: June 10, 2026, 4:17 p.m.
Last Modified: June 10, 2026, 8:19 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

6b3ad84c-e1a6-4bf7-a703-f496b71e49db

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.