CVE-2025-14831

EPSS 0.06%
Veröffentlicht 09.02.2026 14:51:32
Zuletzt bearbeitet 14.05.2026 23:16:36
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Gnutls: gnutls: denial of service via excessive resource consumption during certificate verification

A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 27

CNA 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

HerstellerSiemens

≫

Produkt SIMATIC CN 4100

Default Statusunknown

Version 0

Version < V5.0

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.181

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
secalert@redhat.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-407 Inefficient Algorithmic Complexity

An algorithm in a product has an inefficient worst-case computational complexity that may be detrimental to system performance and can be triggered by an attacker, typically using crafted manipulations that ensure that the worst case is being reached.

https://access.redhat.com/security/cve/CVE-2025-14831

https://bugzilla.redhat.com/show_bug.cgi?id=2423177

https://access.redhat.com/errata/RHSA-2026:3477

https://access.redhat.com/errata/RHSA-2026:4188

https://gitlab.com/gnutls/gnutls/-/issues/1773

https://access.redhat.com/errata/RHSA-2026:4655

https://access.redhat.com/errata/RHSA-2026:4943

https://access.redhat.com/errata/RHSA-2026:5585

https://access.redhat.com/errata/RHSA-2026:5606

https://access.redhat.com/errata/RHSA-2026:6630

https://access.redhat.com/errata/RHSA-2026:6618

https://access.redhat.com/errata/RHSA-2026:6737