CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1978 matches found

OSV•added 2026/03/20 8:35 p.m.•2 views

GHSA-9F94-5G5W-GF6R CRL Distribution Point Scope Check Logic Error in AWS-LC

Summary AWS-LC is an open-source, general-purpose cryptographic library. Impact A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs wi...

7.4CVSS5.9AI score0.00026EPSS

Exploits0References5

Github Security Blog•added 2026/03/20 8:35 p.m.•6 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

5.9AI score

Exploits0References5Affected Software2

RedhatCVE•added 2026/03/20 2:45 p.m.•3 views

CVE-2026-4428

A flaw was found in AWS-LC, a cryptographic library. A logic error in how the library validates Certificate Revocation List CRL distribution points can cause legitimate partitioned CRLs to be incorrectly rejected. This allows a revoked certificate to bypass certificate revocation checks,...

9.1CVSS5.6AI score0.00026EPSS

Exploits0References5

OSV•added 2026/03/20 12:0 p.m.•2 views

RUSTSEC-2026-0049 CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correctly provided CRLs wou...

5.8AI score

Exploits0References2

RustSec•added 2026/03/20 12:0 p.m.•4 views

CRLs not considered authoritative by Distribution Point due to faulty matching logic

5.8AI score

Exploits0Affected Software1

Tenable Nessus•added 2026/03/20 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-4428

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a...

9.1CVSS5.8AI score0.00026EPSS

Exploits0References2

NVD•added 2026/03/19 9:17 p.m.•5 views

CVE-2026-4428

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS0.00026EPSS

Exploits0References2

OSV•added 2026/03/19 9:17 p.m.•4 views

CVE-2026-4428

9.1CVSS5.8AI score

Exploits0References2

Snyk•added 2026/03/19 8:46 p.m.•3 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the CRL number parsing process. An attacker can cause memory corruption or execute arbitrary code by providing a specially crafted CRL with a maliciously sized CRL number. This is only exploitable if CRL support ...

9.8CVSS6.2AI score0.00035EPSS

Exploits1References2

EUVD•added 2026/03/19 8:37 p.m.•5 views

EUVD-2026-13237

9.1CVSS5.7AI score0.00026EPSS

Exploits0References2

CVE•added 2026/03/19 8:37 p.m.•9 views

CVE-2026-4428

The CVE relates to AWS-LC CRL distribution point validation logic before 1.71.0. A logic error caused partitioned CRLs to be incorrectly rejected as out of scope, enabling a revoked certificate to bypass revocation checks. Affected software is AWS-LC prior to 1.71.0; the issue is fixed in AWS-LC ...

9.1CVSS5.7AI score0.00026EPSS

Exploits0References2

ATTACKERKB•added 2026/03/19 5:45 p.m.•4 views

CVE-2026-3548

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.2CVSS6.2AI score0.00035EPSS

Exploits1References3

AlpineLinux•added 2026/03/19 5:45 p.m.•1 views

CVE-2026-3548

9.8CVSS5.8AI score0.00035EPSS

Exploits1

Cvelist•added 2026/03/19 5:45 p.m.•19 views

CVE-2026-3548 Buffer overflow in CRL number parsing in wolfSSL

9.2CVSS0.00035EPSS

Exploits1References2

RustSec•added 2026/03/19 12:0 p.m.•5 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs with Issuing Distribution Point IDP extensions. Customers of AWS services do not...

9.1CVSS5.9AI score0.00026EPSS

Exploits0Affected Software1

OSV•added 2026/03/19 12:0 p.m.•1 views

RUSTSEC-2026-0048 CRL Distribution Point Scope Check Logic Error in AWS-LC

7.4CVSS5.8AI score0.00026EPSS

Exploits0References4

OSV•added 2026/03/19 12:0 p.m.•3 views

RUSTSEC-2026-0042 CRL Distribution Point Scope Check Logic Error in AWS-LC

7.4CVSS5.9AI score0.00026EPSS

Exploits0References4

RustSec•added 2026/03/19 12:0 p.m.•3 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

9.1CVSS5.8AI score0.00026EPSS

Exploits0Affected Software1

CNNVD•added 2026/03/19 12:0 a.m.•3 views

AWS libcrypto 安全漏洞

AWS libcrypto is a general-purpose encryption library open sourced by Amazon Web Services. Prior to version 1.71.0 of AWS libcrypto, there was a security vulnerability. This vulnerability stemmed from a logical error in the CRL distribution point validation process, which incorrectly rejected CRL...

9.1CVSS5.8AI score0.00026EPSS

Exploits0References3

Positive Technologies•added 2026/03/19 12:0 a.m.•3 views

PT-2026-26369

9.1CVSS5.9AI score0.00026EPSS

Exploits0References16

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by