THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-33810 (HIGH 8.2) — When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th

[NVD] CVE-2026-33810 (HIGH 8.2) — When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th

lownvdPublished 2026-04-08

CVE-2026-33810 CVSS: 8.2 HIGH Published: 2026-04-08T02:16:03.950

When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certi

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-33810