CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

EUVD•added 2026/06/01 7:26 p.m.•9 views

EUVD-2026-33755

A flaw was found in gnutls. The PKCS7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of...

3.7CVSS5.8AI score0.00052EPSS

Exploits0References3

EUVD•added 2026/05/26 9:29 p.m.•8 views

EUVD-2026-32011

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.00052EPSS

Exploits0References3

EUVD•added 2026/05/26 9:29 p.m.•6 views

EUVD-2026-32010

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS5.8AI score0.00044EPSS

Exploits0References3

OSV•added 2026/05/26 2:17 p.m.•4 views

JLSEC-2026-521

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and other potential consequences...

9.8CVSS7.1AI score0.00844EPSS

Exploits0References24

RedHat Linux•added 2026/05/26 6:40 a.m.•6 views

gnutls: gnutls: Security bypass due to incorrect name constraint handling

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00017EPSS

Exploits0References4

RedHat Linux•added 2026/05/26 6:40 a.m.•6 views

gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

7.1CVSS5.8AI score0.00044EPSS

Exploits0References4

RedHat Linux•added 2026/05/26 6:40 a.m.•12 views

gnutls: gnutls: Authentication Bypass via NUL Character in Username

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS5.8AI score0.00144EPSS

Exploits0References4

Positive Technologies•added 2026/05/26 12:0 a.m.•4 views

PT-2026-47002

A flaw was found in gnutls. A use after free issue in client sending key share extension may lead to memory corruption and other consequences...

5.5AI score

Exploits0References13

Tenable Nessus•added 2026/05/11 12:0 a.m.•8 views

Unity Linux 20.1060e / 20.1070e Security Update: gnutls (UTSA-2026-017626)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017626 advisory. A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences. Tenable has extracted t...

9.8CVSS6.5AI score0.01195EPSS

Exploits1References4

NVD•added 2026/05/07 3:16 p.m.•11 views

CVE-2026-42011

7.4CVSS0.00017EPSS

Exploits0References6

ATTACKERKB•added 2026/05/07 1:51 p.m.•6 views

CVE-2026-42011

7.4CVSS5.8AI score0.00017EPSS

Exploits0References7

OSV•added 2026/05/07 12:16 p.m.•3 views

ALPINE-CVE-2026-42010

9.8CVSS5.8AI score0.00144EPSS

Exploits0References1

OSV•added 2026/04/30 6:16 p.m.•2 views

ALPINE-CVE-2026-3832

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol OCSP response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabl...

3.7CVSS5.8AI score0.00029EPSS

Exploits1References1

ATTACKERKB•added 2026/04/30 5:41 p.m.•2 views

CVE-2026-3832

3.7CVSS5.4AI score0.00029EPSS

Exploits1References7

EUVD•added 2026/04/30 5:41 p.m.•3 views

EUVD-2026-26402

3.7CVSS5.4AI score0.00029EPSS

Exploits1References3

Cvelist•added 2026/04/30 5:41 p.m.•27 views

CVE-2026-3832 Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response

3.7CVSS0.00029EPSS

Exploits1References6

Cvelist•added 2026/04/30 5:37 p.m.•32 views

CVE-2026-3833 Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labels, specifically for dNSName DNS or rfc822Name email constraints within excludedSubtrees or permittedSubtrees. A remote attacker can exploit this by crafting a leaf...

6.5CVSS0.00175EPSS

Exploits1References7

RedhatCVE•added 2026/04/30 5:37 p.m.•4 views

CVE-2026-3833

7.4CVSS5AI score0.00175EPSS

Exploits1References4

NVD•added 2026/04/09 6:16 p.m.•2 views

CVE-2026-1584

A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ClientHello message with an invalid Pre-Shared Key PSK binder value during the TLS handshake. This can lead to a NULL pointer dereference, causing the server to crash and...

7.5CVSS0.0011EPSS

Exploits0References3

OSV•added 2026/04/09 6:16 p.m.•1 views

ALPINE-CVE-2026-1584

7.5CVSS5.8AI score0.0011EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by