THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-42011 (HIGH 7.4) — A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during

[NVD] CVE-2026-42011 (HIGH 7.4) — A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during

lownvdPublished 2026-05-07

CVE-2026-42011 CVSS: 7.4 HIGH Published: 2026-05-07T15:16:09.760

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate validation. This bypass could lead to the

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-42011