CVE-2026-3833

ADVISORY - nist

Summary

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labels, specifically for dNSName (DNS) or rfc822Name (email) constraints within excludedSubtrees or permittedSubtrees. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized access or information disclosure.

EPSS Score⁠: 0.00086 (0.245)

Common Weakness Enumeration (CWE)

ADVISORY - nist

NIST

CREATED

12 days ago

UPDATED

6 days ago

ADVISORY IDCVE-2026-3833⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-178⁠

CVSS SCORE

6.5medium

Alpine

CREATED

12 days ago

UPDATED

1 day ago

ADVISORY IDCVE-2026-3833⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

13 days ago

UPDATED

10 days ago

ADVISORY IDCVE-2026-3833⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

12 days ago

UPDATED

1 day ago

ADVISORY IDCVE-2026-3833⁠

EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.4medium

Red Hat

CREATED

12 days ago

UPDATED

12 days ago

ADVISORY IDCVE-2026-3833⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-178⁠

CVSS SCORE

6.5medium

CVE-2026-3833

Summary

Common Weakness Enumeration (CWE)

CWE-178⁠

CWE-178⁠

Advisories

NIST

CVSS SCORE

Alpine

Debian

Ubuntu

CVSS SCORE

Red Hat

CVSS SCORE