CVE-2025-14831
5.3 MEDIUMA flaw was found in GnuTLS
Published: 2026-02-09 · Last updated: 2026-06-10
Severity and scoring
- CVSS
- 5.3 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- CWE
- CWE-407
Description
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2025-14831
- [Other]https://access.redhat.com/errata/RHSA-2026:13812
- [Other]https://access.redhat.com/errata/RHSA-2026:16008
- [Other]https://access.redhat.com/errata/RHSA-2026:16009
- [Other]https://access.redhat.com/errata/RHSA-2026:16174
- [Other]https://access.redhat.com/errata/RHSA-2026:25096
- [Other]https://access.redhat.com/errata/RHSA-2026:3477
- [Other]https://access.redhat.com/errata/RHSA-2026:4188
- [Other]https://access.redhat.com/errata/RHSA-2026:4655
- [Other]https://access.redhat.com/errata/RHSA-2026:4943
- [Other]https://access.redhat.com/errata/RHSA-2026:5585
- [Other]https://access.redhat.com/errata/RHSA-2026:5606
- [Other]https://access.redhat.com/errata/RHSA-2026:6618
- [Other]https://access.redhat.com/errata/RHSA-2026:6630
- [Other]https://access.redhat.com/errata/RHSA-2026:6737
- [Other]https://access.redhat.com/errata/RHSA-2026:6738
- [Other]https://access.redhat.com/errata/RHSA-2026:7329
- [Other]https://access.redhat.com/errata/RHSA-2026:7335
- [Other]https://access.redhat.com/errata/RHSA-2026:7477
- [Other]https://access.redhat.com/errata/RHSA-2026:8746
- [Other]https://access.redhat.com/errata/RHSA-2026:8747
- [Other]https://access.redhat.com/errata/RHSA-2026:8748
- [Other]https://access.redhat.com/security/cve/CVE-2025-14831
- [Other]https://bugzilla.redhat.com/show_bug.cgi?id=2423177
- [Other]https://gitlab.com/gnutls/gnutls/-/issues/1773
- [Other]https://cert-portal.siemens.com/productcert/html/ssa-032379.html
Related CVEs
Same CWE
- CVE-2026-45664 — ImageMagick is free and open-source software used for editing and manipulating digital images (5.3 MEDIUM)
- CVE-2026-41850 — Applications that evaluate user-supplied Spring Expression Language (SpEL) expressions are vulnerable to an Algorithmic Denial of Service... (7.5 HIGH)
- CVE-2026-11312 — A vulnerability was found in bytedance InfiniStore up to 0.2.33 (3.3 LOW)
- CVE-2026-8889 — Version 3.0.7 of the Securly Chrome Extension uses deprecated SHA-1 hashing for IWF CSAM URL matching (25,020 hashes) and CIPA blocklist ... (7.5 HIGH)
- CVE-2026-3276 — unicodedata.normalize() can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining cha...