CVE-2026-3832

· NIST NVD ↗

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.

LOW
CVSS severity
3.7
CVSS base score
2026-04-30
Published

CWE codes

CWE-179

Affected products

gnu:gnutlsredhat:hardened_imagesredhat:openshift_container_platformredhat:enterprise_linux

Sources