A vulnerability was found in HashiCorp memberlist up to 0.5.x. It has been classified as problematic. The impacted element is an unknown function of the component Push/Pull State Handler. The manipulation leads to denial of service.

This vulnerability is referenced as CVE-2026-14362. Remote exploitation of the attack is possible. No exploit is available.