CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Positive Technologies•added 2026/04/13 12:0 a.m.•3 views

PT-2026-32420

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

7.5CVSS5.8AI score0.00022EPSS

Exploits0References6

Positive Technologies•added 2026/04/13 12:0 a.m.•2 views

PT-2026-32425

When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

7.5CVSS5.8AI score0.00013EPSS

Exploits0References6

NVD•added 2026/04/08 2:16 a.m.•3 views

CVE-2026-32281

7.5CVSS0.00022EPSS

Exploits0References4

OSV•added 2026/04/08 2:16 a.m.•0 views

DEBIAN-CVE-2026-32281

7.5CVSS5.3AI score0.00022EPSS

Exploits0References1

Cvelist•added 2026/04/08 1:6 a.m.•14 views

CVE-2026-32281 Inefficient policy validation in crypto/x509

0.00022EPSS

Exploits0References4

CVE•added 2026/04/08 1:6 a.m.•91 views

CVE-2026-32281

CVE-2026-32281 : In Go, policy validation for X.509 certificate chains can be inefficient when many policy mappings are present, potentially enabling a denial-of-service on validation of otherwise trusted chains. The OpenSUSE advisories note fixes in Go updates: go1.25.9 and go1.26.2, with SUSE p...

7.5CVSS5.9AI score0.00022EPSS

Exploits0References4Affected Software1