THREAT OPS › Threat News › [NVD] CVE-2026-33810 (HIGH 8.2) — When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th
[NVD] CVE-2026-33810 (HIGH 8.2) — When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th
CVE-2026-33810 CVSS: 8.2 HIGH Published: 2026-04-08T02:16:03.950
When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certi
Indicators of compromise
- CVE-2026-33810cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-33810