THREAT OPS › Threat News › [NVD] CVE-2026-5419 (LOW 3.7) — A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerabi
[NVD] CVE-2026-5419 (LOW 3.7) — A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerabi
CVE-2026-5419 CVSS: 3.7 LOW Published: 2026-06-01T21:16:47.480
A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.
Indicators of compromise
- CVE-2026-5419cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-5419