THREAT OPS › Threat News › [NVD] CVE-2026-42011 (HIGH 7.4) — A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during
[NVD] CVE-2026-42011 (HIGH 7.4) — A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during
CVE-2026-42011 CVSS: 7.4 HIGH Published: 2026-05-07T15:16:09.760
A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate validation. This bypass could lead to the
Indicators of compromise
- CVE-2026-42011cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-42011