A vulnerability has been found in quic-go up to 0.59.0 and classified as problematic . This impacts an unknown function. The manipulation leads to allocation of resources. This vulnerability is traded as CVE-2026-40898 . It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.