Lucene search
K

478 matches found

OSV
OSV
added 2026/04/22 12:41 a.m.3 views

CLEANSTART-2026-SV08737 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the gitness package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.9AI score0.01945EPSS
Exploits6References38
RedhatCVE
RedhatCVE
added 2026/04/17 4:3 a.m.4 views

CVE-2026-32280

A flaw was found in the Go standard library packages crypto/x509 and crypto/tls. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being...

7.5CVSS5.8AI score0.00615EPSS
Exploits0References7
OSV
OSV
added 2026/04/16 1:2 a.m.12 views

CLEANSTART-2026-WB12909 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the kyverno-policy-reporter-kyverno-plugin-fips package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerabili...

9.8CVSS7.1AI score0.01557EPSS
Exploits5References70
OSV
OSV
added 2026/04/16 1:1 a.m.13 views

CLEANSTART-2026-UQ68343 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the kyverno-policy-reporter-kyverno-plugin-fips package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerabili...

9.8CVSS7.1AI score0.01945EPSS
Exploits6References41
OSV
OSV
added 2026/04/16 12:52 a.m.17 views

CLEANSTART-2026-RR42740 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the gpu-operator package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.8AI score0.00804EPSS
Exploits0References17
OSV
OSV
added 2026/04/16 12:45 a.m.14 views

CLEANSTART-2026-JZ43336 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS5.8AI score0.00621EPSS
Exploits0References15
Snyk
Snyk
added 2026/04/10 5:8 a.m.8 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation in the wolfSSLX509verifycert function. An attacker can bypass certificate signature validation by supplying a certificate chain where an untrusted intermediate with Basic Constraints set to CA:FALSE is...

8.6CVSS5.8AI score0.00184EPSS
Exploits0References2
OSV
OSV
added 2026/04/10 4:17 a.m.8 views

UBUNTU-CVE-2026-5501

wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints CA:FALSE that is legitimately signed by a trusted root. An attacker who obtains any leaf...

8.6CVSS5.9AI score0.00184EPSS
Exploits0References3
CVE
CVE
added 2026/04/10 3:7 a.m.53 views

CVE-2026-5501

CVE-2026-5501 involves wolfSSL’s X509_verify_cert in the OpenSSL compatibility layer. The vulnerability arises when a certificate chain is presented where the leaf’s signature is not checked if an untrusted intermediate (CA:FALSE) signed by a trusted root is supplied. An attacker with any leaf ce...

8.6CVSS6AI score0.00184EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/10 3:7 a.m.1 views

CVE-2026-5501

wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints CA:FALSE that is legitimately signed by a trusted root. An attacker who obtains any leaf...

8.6CVSS6AI score0.00184EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/10 3:7 a.m.4 views

CVE-2026-5501

wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints CA:FALSE that is legitimately signed by a trusted root. An attacker who obtains any leaf...

8.6CVSS5.5AI score0.00184EPSS
Exploits0
OSV
OSV
added 2026/04/10 1:6 a.m.6 views

CLEANSTART-2026-DM93480 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the lvm-driver package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.9AI score0.01557EPSS
Exploits4References25
OSV
OSV
added 2026/04/10 1:5 a.m.4 views

CLEANSTART-2026-UO31069 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the lvm-driver package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.9AI score0.01557EPSS
Exploits4References23
OSV
OSV
added 2026/04/10 1:3 a.m.5 views

CLEANSTART-2026-AC01087 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the gitness package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.8AI score0.01945EPSS
Exploits6References37
OSV
OSV
added 2026/04/10 1:3 a.m.3 views

CLEANSTART-2026-NX54250 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the gitness package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.8AI score0.01945EPSS
Exploits6References37
OSV
OSV
added 2026/04/10 12:57 a.m.8 views

CLEANSTART-2026-PE52216 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the mongodb package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

9.8CVSS6.9AI score0.83007EPSS
Exploits39References25
EUVD
EUVD
added 2026/04/10 12:30 a.m.4 views

EUVD-2026-21178

URI nameConstraints from constrained intermediate CAs are parsed but not enforced during certificate chain verification in wolfcrypt/src/asn.c. A compromised or malicious sub-CA could issue leaf certificates with URI SAN entries that violate the nameConstraints of the issuing CA, and wolfSSL woul...

7CVSS5.9AI score0.00165EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.7 views

PT-2026-31865

Name of the Vulnerable Software and Affected Versions wolfSSL versions prior to 5.9.1 Description The wolfSSL X509 verify cert function within the OpenSSL compatibility layer does not properly check the signature of a certificate's leaf when an untrusted intermediate certificate with Basic...

8.6CVSS5.8AI score0.00184EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/10 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-5501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an...

8.6CVSS6AI score0.00184EPSS
Exploits0References3
OSV
OSV
added 2026/04/09 10:16 p.m.2 views

DEBIAN-CVE-2026-5263

URI nameConstraints from constrained intermediate CAs are parsed but not enforced during certificate chain verification in wolfcrypt/src/asn.c. A compromised or malicious sub-CA could issue leaf certificates with URI SAN entries that violate the nameConstraints of the issuing CA, and wolfSSL woul...

6.5CVSS5.3AI score0.00165EPSS
Exploits0References1
Rows per page
Query Builder