CVE-2026-24904 - TrustTunnel has `client_random_prefix` rule bypass via fragmented or partial TLS ClientHello
CVE ID : CVE-2026-24904
Published : Jan. 29, 2026, 9:19 p.m. | 47 minutes ago
Description : TrustTunnel is an open-source VPN protocol with a rule bypass issue i...
CVE-2026-24904 - TrustTunnel has `client_random_prefix` rule bypass via fragmented or partial TLS ClientHello
TrustTunnel is an open-source VPN protocol with a rule bypass issue in versions prior to 0.9.115. In `tls_listener.rs`, `TlsListener::listen()` peeks 1024 bytes and calls `extract_client_random(...)`. If `parse_tls_plaintext` fails (for example, a fragmented/partial ClientHello split across TCP writes), `extract_client_random` returns `None`. In `rules.rs`, `RulesEngine::evaluate` only evaluates `client_random_prefix` when `client_random` is `Some(...)`. …
