Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4445 matches found

OSV
OSVadded 2026/05/07 8:16 p.m.3 views

UBUNTU-CVE-2026-42225

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2026/05/07 8:16 p.m.3 views

CVE-2026-42225

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References5
CVE
CVEadded 2026/05/07 6:47 p.m.11 views

CVE-2026-42225

PJSIP’s GnuTLS-enabled SIP TLS transport (sip_transport_tls) in builds prior to version 2.17 can accept connections with invalid/untrusted certificates even when verify_server/verify_client are PJ_TRUE. The vulnerability arises from certificate verification being effectively skipped for those bui...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/05/07 6:47 p.m.7 views

CVE-2026-42225

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS5.7AI score0.00021EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/07 6:47 p.m.26 views

CVE-2026-42225 GnuTLS backend silently skips certificate chain verification when verify_peer is false

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS0.00021EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/07 6:47 p.m.5 views

CVE-2026-42225

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/07 6:47 p.m.7 views

CVE-2026-42225 GnuTLS backend silently skips certificate chain verification when verify_peer is false

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport siptransporttls can accept connections with invalid or untrusted certificates even when the application explicitly enables certificate verification via...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References3
OSV
OSVadded 2026/05/07 4:45 p.m.3 views

CLSA-2026-1778172299 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.001EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/07 3:38 p.m.7 views

EUVD-2026-28386

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References3
Snyk
Snykadded 2026/05/07 3:27 p.m.5 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation via incorrect handling of name constraints during certificate validation. An attacker can bypass critical certificate validation checks by presenting a certificate chain where permitted name constraints a...

9.1CVSS5.8AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2026/05/07 3:16 p.m.1 views

ALPINE-CVE-2026-42011

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References1
NVD
NVDadded 2026/05/07 3:16 p.m.10 views

CVE-2026-42011

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS0.00016EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/05/07 1:51 p.m.5 views

CVE-2026-42011 Gnutls: gnutls: security bypass due to incorrect name constraint handling

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/05/07 1:51 p.m.33 views

CVE-2026-42011 Gnutls: gnutls: security bypass due to incorrect name constraint handling

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS0.00016EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/05/07 1:51 p.m.6 views

CVE-2026-42011

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References7
CVE
CVEadded 2026/05/07 1:51 p.m.13 views

CVE-2026-42011

CVE-2026-42011: In GnuTLS, permitted name constraints can be ignored when previous CAs had only excluded constraints, enabling bypass of name-constraint validation. This could allow accepting invalid certificates, potentially allowing spoofing or MITM. No patch/version details are provided in the...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2026/05/07 1:50 p.m.5 views

CVE-2026-42011

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.8AI score0.00016EPSS
Exploits0References3
Snyk
Snykadded 2026/05/07 1:23 p.m.5 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication due to the improper handling of usernames containing a NUL character when server is configured with RSA-PSK. An attacker can gain unauthorized access by sending a specially crafted username that causes the server...

9.8CVSS5.8AI score0.00125EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/07 12:31 p.m.3 views

EUVD-2026-28354

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

7.1CVSS5.8AI score0.00125EPSS
Exploits0References3
NVD
NVDadded 2026/05/07 12:16 p.m.10 views

CVE-2026-42010

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS0.00125EPSS
Exploits0References6
Rows per page
Query Builder