Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2026/04/08 11:25 p.m.9 views

SUSE CVE-2026-32144

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in publickey:pkixocspvalidate/5 does not verify that a CA-designated responder certificate...

8.1CVSS5.8AI score0.002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-32144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing...

7.6CVSS5.8AI score0.002EPSS
Exploits0References3
OSV
OSV
added 2026/04/07 1:16 p.m.3 views

DEBIAN-CVE-2026-32144

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in publickey:pkixocspvalidate/5 does not verify that a CA-designated responder certificate...

7.4CVSS5.5AI score0.002EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/07 12:28 p.m.4 views

CVE-2026-32144

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in publickey:pkixocspvalidate/5 does not verify that a CA-designated responder certificate...

7.6CVSS5.9AI score0.002EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/04/07 12:28 p.m.32 views

CVE-2026-32144

The CVE affects Erlang OTP’s public_key OCSP validation path (pubkey_ocsp module, pkix_ocsp_validate/5) where OCSP responder verification omits cryptographic signature validation of CA-designated responders. Instead, it only checks issuer name matching and OCSPSigning EKU, enabling a maliciously ...

7.6CVSS5.9AI score0.002EPSS
Exploits0References9Affected Software3
Cvelist
Cvelist
added 2026/04/07 12:28 p.m.27 views

CVE-2026-32144 OCSP designated-responder authorization bypass via missing signature verification

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in publickey:pkixocspvalidate/5 does not verify that a CA-designated responder certificate...

7.6CVSS0.002EPSS
Exploits0References6
OSV
OSV
added 2026/04/07 12:28 p.m.3 views

EEF-CVE-2026-32144 OCSP designated-responder authorization bypass via missing signature verification

Summary Improper Certificate Validation vulnerability in Erlang OTP public\key pubkey\ocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in public\key:pkix\ocsp\validate/5 does not verify that a CA-designated responde...

7.6CVSS5.8AI score0.002EPSS
Exploits0References5
Rows per page
Query Builder