Skip to content
July 11, 2026
  • Linkedin
  • Twitter
  • Facebook
  • Youtube

Daily CyberSecurity

Zero-hour alerts. Unmatched analysis.

Primary Menu
  • Home
  • CVE Data
    • CVE Watchtower
    • Top Exploited CVEs
    • CVE Stats by Vendor
    • Q2 2026 Report
  • Cyber Criminals
  • Data Leak
  • Linux
  • Malware
  • Vulnerability
  • Submit Press Release
  • Vulnerability Report
Light/Dark Button
  • Home
  • Technique
  • STUN vs. TURN Servers in WebRTC
  • Technique

STUN vs. TURN Servers in WebRTC

Do Son October 30, 2022 5 minutes read
WebRTC bug

Video calling technology has taken over the world, and people can see and hear each other via the Internet in a matter of seconds if they want to. Previously, users had to download programs and install them on their devices to use video conferencing services. Not to mention the era when the software was stored and shared on disks. But now, there are dedicated video conferencing platforms that allow peer-to-peer communication almost instantly. This is possible thanks to WebRTC technology. For users, it might look like the connection just happens, but many special servers are working for two people to speak to each other online in real-time. Digital Samba (https://www.digitalsamba.com/video-api) is one of the platforms that allow such simple communication.

Servers Needed for P2P Communication

WebRTC, to put it simply, is a connection established between two different browsers. It is the most simple connection as it only features two people. However, with video conferencing platforms, thousands of people can communicate within one digital call simultaneously. But the smallest connection between two Internet users is a good example. To bring these two people together, it is necessary to establish a connection with the server. A server does the coordination necessary for the video connection to work. At this stage, two types of servers can be used: STUN or TURN.

About STUN Servers

To communicate online in real time and use video, audio, and file sharing in the process, it is necessary to connect to a specific server. Both Session Traversal Utilities for NAT or STUN and Traversal Using Relays around NAT or TURN servers are incorporated in the process of digital peer-to-peer communication. However, they are utilized on different occasions.

Before the connection between the two video conferencing platform users can be established, a server needs to identify the IPs of both users. The software using WebRTC usually works with STUN servers. They are fast, easy to use, and do not generate much traffic.

When the connection between two users happens, they can easily exchange data directly with each other. However, in some cases, firewalls prohibit the software from connecting to the STUN servers. That is why TURN servers are used as an alternative.

About TURN Servers

Because of a firewall or other limitations, access to a certain server can be limited. Because there are no identifiers that would help two devices to discover each other and connect, another solution is necessary. It is when TURN servers come into play. However, when a TURN server helps to finally connect the two dots, it remains in the way of data exchange, unlike a STUN server. This usually results in slower operation, which is a price you have to pay for establishing a connection when the other option does not work out. This also often means increased expenses.

Although TURN servers are slower and more expensive, they can save your connection if STUN servers cannot be used. In any case, a connection between two or more people is established, and it becomes possible to communicate via a video call live.

Benefits of Video Conferencing

Being able to communicate over the Internet in real-time and not only hear but also see the people you are talking to is a great invention. In addition, modern video conferencing software opens up new opportunities for collaboration, which allows for convenient and efficient work and studying. Software like Digital Samba is extremely useful and safe thanks to its encryption methods called E2EE. It is GDPR-compliant as well, which contributes to its security. Here are some of the reasons why you should consider video conferencing services:

  • Easier communication – previously, remote work and even working in the office were not very convenient in many cases. Communicating via the phone made it impossible to see the other person, and sharing files or ideas was more difficult. With video conferencing, you can connect with your colleagues easily from any point on the planet.
  • Cutting costs – hosting a conference for many employees of a company often requires traveling to a certain destination. If your company has offices in different cities or even countries, it is rather difficult and costly to bring people together. Video calls are incredibly affordable and handy when it comes to arranging a meeting for people from all across the world.
  • Increased efficiency – convenient conditions and tools for collaboration result in enhanced efficiency. When your employees can jump on a video call within seconds to discuss certain questions and ask for advice, their workflow becomes much more smooth and brings better results.
  • Affordable – even if you want to have a dedicated video conference room with all the necessary equipment, it is cost-efficient as high-quality hardware and software will serve for many years. However, you do not even need extremely expensive equipment for video conferencing. A simple laptop or even a smartphone will work just fine.
  • Recording videos – whether you need to record your meeting for the archive or you want to create a series of live workshops and upload them on your site afterward, this is possible with video calling software. Simply start recording at the beginning of your live stream session and store the full video in a cloud afterward. Cloud storage is especially convenient for such large videos as you will not need to store all the files within the company.
  • Host video conferences of any scale – from a face-to-face video chat with a colleague to a live stream for your clients with thousands of attendees, video conferencing solutions are very scalable and can suit any of your corporate needs. Host a variety of events or meetings using a single software.

Video conferencing technology has come a long way, and modern servers allow connecting with other users easily within seconds.

Share this article:

Facebook Post LinkedIn Telegram

Search

Translation

CVE WATCHTOWER
🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

Upgrade Package

🚨 Active Exploits in the Wild

  • CVE-2026-1207CVSS 5.4
    An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on...
    Admin intel📅 Updated: Jul 10, 2026
  • CVE-2026-48939
    A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-56291
    The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-55255CVSS 8.4
    Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, an Insecure Direct...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-48908
    A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-56290
    The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-20896CVSS 9.8
    Gitea Docker image: `REVERSE_PROXY_TRUSTED_PROXIES = *` default lets any source IP impersonate any user via `X-WEBAUTH-USER`
    Admin intel📅 Updated: Jul 6, 2026
  • CVE-2026-48282CVSS 10.0
    ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted...
    Admin intelCISA KEV📅 Added to KEV: Jul 7, 2026📅 Updated: Jul 3, 2026
Powered by CVE Watchtower

🔴 Live Critical Threats

  • CVE-2026-14480CVSS 9.9
    OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the...
  • CVE-2026-20744CVSS 9.8
    The charging station websocket endpoint accepts connections without proper authentication, which could...
  • CVE-2026-57807CVSS 9.8
    Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security...
  • CVE-2026-55879CVSS 9.3
    OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the...
  • CVE-2026-12761CVSS 9.8
    The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for...
  • CVE-2026-54159CVSS 10.0
    ### Impact A PHP Object Injection vulnerability affects the PrestaShop module `ps_facetedsearch`....
  • CVE-2026-54072CVSS 9.3
    ## Summary The `/authorize` endpoint accepts any `redirect_uri` without validating it against...
  • CVE-2026-5801CVSS 9.8
    Improper neutralization of special elements used in an SQL command ('SQL injection')...
  • CVE-2026-59151CVSS 9.6
    Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication...
  • CVE-2026-61459CVSS 9.8
    MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured...
Powered by CVE WATCHTOWER

Our Websites
  • Penetration Testing Tools
  • The Daily Information Technology
  • Top Exploited CVEs
  • Daily CyberSecurity

    • About SecurityOnline.info
    • Advertise with us
    • Announcement
    • Contact
    • Contributor Register
    • Login
    • Disclaimer
    • DCMA
    • Privacy Policy
    • About SecurityOnline.info
    • Advertise on SecurityOnline.info
    • Contact Us

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works

    • CVE Watchtower
    • CVE Statistics by Vendor 2026
    • Q2 2026 Report
    • Top Exploited CVEs
    • Linkedin
    • Twitter
    • Facebook
    • Youtube
    © 2017 - 2026 Daily CyberSecurity. All Rights Reserved.