Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4442 matches found

NVD
NVDadded last week8 views

CVE-2026-10028

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS0.00092EPSS
Exploits0References3
OSV
OSVadded last week5 views

UBUNTU-CVE-2026-10028

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded last week7 views

CVE-2026-10028

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded last week3 views

CVE-2026-10028 Glib-networking: infinite loop in glib-networking gnutls backend allows remote denial of service via circular certificate chain

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References3
CVE
CVEadded last week11 views

CVE-2026-10028

Affected software: glib-networking with the GnuTLS backend. Issue: a certificate verification path can loop indefinitely when presented with a specially crafted chain containing circular issuer relationships. Impact: unbounded traversal consumes CPU, causing denial of service of the affected proc...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References3
Debian CVE
Debian CVEadded last week8 views

CVE-2026-10028

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS5.8AI score0.00092EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/05/28 12:0 a.m.5 views

PT-2026-44579

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References4
OSV
OSVadded 2026/05/27 10:7 a.m.4 views

RHSA-2026:20611 Red Hat Security Advisory: gnutls security update

Bulletin has no description...

8.2CVSS5.7AI score0.00486EPSS
Exploits1References48
SUSE Linux
SUSE Linuxadded 2026/05/27 7:58 a.m.4 views

Security update for gnutls

This update for gnutls fixes the following issues CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short ciphertexts bsc1263715. CVE-2026-33845: buffers: switch from endoffset over to fraglength...

8.8CVSS5.8AI score0.00486EPSS
Exploits1References44
Tenable Nessus
Tenable Nessusadded 2026/05/27 12:0 a.m.5 views

AlmaLinux 8 : gnutls (ALSA-2026:20611)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:20611 advisory. gnutls: Add more checks to DTLS reassembly CVE-2026-33846 gnutls: Fix qsort comparator in DTLS reassembly CVE-2026-42009 gnutls: Fix crashing on an...

9.8CVSS5.8AI score0.00486EPSS
Exploits1References13
Tenable Nessus
Tenable Nessusadded 2026/05/27 12:0 a.m.8 views

RHEL 8 : gnutls (RHSA-2026:20611)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20611 advisory. Please update the gnutls packages to provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and...

9.8CVSS5.9AI score0.00486EPSS
Exploits1References20
NVD
NVDadded 2026/05/26 10:16 p.m.11 views

CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS0.00052EPSS
Exploits0References5
NVD
NVDadded 2026/05/26 10:16 p.m.7 views

CVE-2026-42015

A flaw was found in gnutls. An off-by-one error exists in the PKCS12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of...

5.3CVSS0.00249EPSS
Exploits0References5
OSV
OSVadded 2026/05/26 10:16 p.m.3 views

ALPINE-CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.00052EPSS
Exploits0References1
OSV
OSVadded 2026/05/26 10:16 p.m.3 views

ALPINE-CVE-2026-42015

A flaw was found in gnutls. An off-by-one error exists in the PKCS12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References1
OSV
OSVadded 2026/05/26 10:16 p.m.1 views

ALPINE-CVE-2026-42012

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS5.8AI score0.00044EPSS
Exploits0References1
NVD
NVDadded 2026/05/26 10:16 p.m.10 views

CVE-2026-42012

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS0.00044EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/26 9:29 p.m.26 views

CVE-2026-42013 Gnutls: gnutls: certificate validation bypass due to oversized subject alternative name

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS0.00052EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/26 9:29 p.m.3 views

CVE-2026-42013 Gnutls: gnutls: certificate validation bypass due to oversized subject alternative name

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.00052EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/26 9:29 p.m.9 views

CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.00052EPSS
Exploits0References6
Rows per page
Query Builder