Lucene search
+L

9 matches found

osv
osv
added 2026/06/25 9:16 p.m.3 views

DEBIAN-CVE-2026-6731

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name constraints could be accepted...

7.5CVSS5.8AI score0.00124EPSS
Exploits0References1
osv
osv
added 2026/06/25 9:16 p.m.5 views

UBUNTU-CVE-2026-6731

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name constraints could be accepted...

7.5CVSS5.8AI score0.00124EPSS
Exploits0References5
debiancve
debiancve
added 2026/06/25 8:8 p.m.8 views

CVE-2026-6731

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name constraints could be accepted...

7.5CVSS5.8AI score0.00124EPSS
Exploits0
euvd
euvd
added 2026/06/25 8:8 p.m.7 views

EUVD-2026-39555

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name constraints could be accepted...

6CVSS5.8AI score0.00124EPSS
Exploits0References2
nessus
nessus
added 2026/04/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-32884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of...

5.9CVSS5.9AI score0.00158EPSS
Exploits0References4
osv
osv
added 2026/01/30 3:29 p.m.5 views

CLEANSTART-2026-TS42581 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the chartmuseum-fips package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

9.8CVSS5.6AI score0.00626EPSS
Exploits2References32
osv
osv
added 2025/01/30 7:13 p.m.8 views

BIT-GOLANG-2024-45341 Usage of IPv6 zone IDs can bypass URI name constraints in crypto/x509

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.1CVSS6.1AI score0.00458EPSS
Exploits0References7
osv
osv
added 2022/11/01 6:15 p.m.3 views

DEBIAN-CVE-2022-3602

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

7.5CVSS8.4AI score0.9077EPSS
Exploits6References1
mskb
mskb
added 2018/04/17 12:0 a.m.6 views

April 17, 2018—KB4093117 (OS Build 15063.1058)

None None...

6.1AI score
Exploits0
Rows per page
Query Builder