THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-32283 (HIGH 7.5) — If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

[NVD] CVE-2026-32283 (HIGH 7.5) — If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

lownvdPublished 2026-04-08

CVE-2026-32283 CVSS: 7.5 HIGH Published: 2026-04-08T02:16:03.580

If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-32283