Lucene search
K

CVE-2026-42013

🗓️ 26 May 2026 21:29:32Reported by redhatType 
cve
 cve
🔗 web.nvd.nist.gov👁 59 Views

CVE-2026-42013: GnuTLS validation bypass when SAN is oversized, fallback to CN enables spoofing.

Related
Detection
Affected
Refs
Vulners
Node
OROR
redhatenterprise_linuxMatch8appstream
OROR
redhatrhel_ausMatch8.4appstream
OR
redhatrhel_eus_long_lifeMatch8.4appstream
OR
redhatrhel_ausMatch8.4baseos
OROR
redhatrhel_ausMatch8.6appstream
OR
redhatrhel_eus_long_lifeMatch8.6appstream
OR
redhatrhel_ausMatch8.6baseos
OROR
redhatrhel_e4sMatch8.8appstream
OR
redhatrhel_tusMatch8.8appstream
OR
redhatrhel_e4sMatch8.8baseos
OR
redhatrhel_tusMatch8.8baseos
OR
redhatenterprise_linuxMatch9appstream
OROR
redhatrhel_e4sMatch9.4appstream
OR
redhatrhel_e4sMatch9.4baseos
OR
redhatrhel_eusMatch9.6appstream
OR
redhatrhel_eusMatch9.6baseos
OROR
redhatrhuiMatch5el9
[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.10-4.el10_2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10.2"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.9-9.el10_0.19",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:enterprise_linux_eus:10.0"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-8.el8_10.6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream",
      "cpe:/o:redhat:enterprise_linux:8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-8.el8_10.6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream",
      "cpe:/o:redhat:enterprise_linux:8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.14-10.el8_4.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
      "cpe:/o:redhat:rhel_aus:8.4::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-3.el8_4.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
      "cpe:/o:redhat:rhel_aus:8.4::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.14-10.el8_4.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
      "cpe:/o:redhat:rhel_aus:8.4::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-3.el8_4.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
      "cpe:/o:redhat:rhel_aus:8.4::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-5.el8_6.5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.6::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream",
      "cpe:/o:redhat:rhel_aus:8.6::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-3.el8_6.2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.6::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream",
      "cpe:/o:redhat:rhel_aus:8.6::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-5.el8_6.5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.6::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream",
      "cpe:/o:redhat:rhel_aus:8.6::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-3.el8_6.2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.6::appstream",
      "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream",
      "cpe:/o:redhat:rhel_aus:8.6::baseos",
      "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-7.el8_8.4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_e4s:8.8::appstream",
      "cpe:/a:redhat:rhel_tus:8.8::appstream",
      "cpe:/o:redhat:rhel_e4s:8.8::baseos",
      "cpe:/o:redhat:rhel_tus:8.8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-4.el8_8.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_e4s:8.8::appstream",
      "cpe:/a:redhat:rhel_tus:8.8::appstream",
      "cpe:/o:redhat:rhel_e4s:8.8::baseos",
      "cpe:/o:redhat:rhel_tus:8.8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.6.16-7.el8_8.4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_e4s:8.8::appstream",
      "cpe:/a:redhat:rhel_tus:8.8::appstream",
      "cpe:/o:redhat:rhel_e4s:8.8::baseos",
      "cpe:/o:redhat:rhel_tus:8.8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "libtasn1",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.13-4.el8_8.1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_e4s:8.8::appstream",
      "cpe:/a:redhat:rhel_tus:8.8::appstream",
      "cpe:/o:redhat:rhel_e4s:8.8::baseos",
      "cpe:/o:redhat:rhel_tus:8.8::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.10-4.el9_8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/o:redhat:enterprise_linux:9::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.10-4.el9_8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/o:redhat:enterprise_linux:9::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.3-4.el9_4.6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_e4s:9.4::appstream",
      "cpe:/o:redhat:rhel_e4s:9.4::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.8.3-6.el9_6.4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.6::appstream",
      "cpe:/o:redhat:rhel_eus:9.6::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Discovery 2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "discovery/discovery-server-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1782159791",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:discovery:2::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Discovery 2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "discovery/discovery-ui-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1782166952",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:discovery:2::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Update Infrastructure 5",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "rhui5/cds-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1781525684",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhui:5::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Update Infrastructure 5",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "rhui5/haproxy-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1781525671",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhui:5::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Update Infrastructure 5",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "rhui5/installer-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1781525693",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhui:5::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Update Infrastructure 5",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "rhui5/rhua-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1781525739",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhui:5::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Hardened Images",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gnutls",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:hummingbird:1"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "openshift4/ose-hypershift-rhel9",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhcos",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Jul 2026 17:17Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.18.2
EPSS0.00423
SSVC
59