PT-2026-31068 · Openssl+2 · Openssl+2

1Seal

+2

·

Publicado

2026-04-07

·

Atualizado

2026-05-21

·

CVE-2026-33810

CVSS v2.0

8.5

Alta

VetorAV:N/AC:L/Au:N/C:C/I:P/A:N
Name of the Vulnerable Software and Affected Versions versões anteriores a 2.3
Description Ao verificar uma cadeia de certificados com restrições de DNS excluídas, essas restrições não são aplicadas corretamente aos Subject Alternative Names (SANs) de DNS curinga que diferem em maiúsculas e minúsculas. Isso afeta a validação de cadeias de certificados confiáveis emitidas por uma Autoridade Certificadora (CA) raiz no sistema ou no pool de certificados raiz especificado.
Recommendations Atualize para uma versão anterior a 2.3.

Correção

Improper Certificate Validation

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-295

Identificadores relacionados

ALSA-2026:19135
ALSA-2026:19353
BDU:2026-07331
BIT-GOLANG-2026-33810
CLEANSTART-2026-AC01087
CLEANSTART-2026-AP92343
CLEANSTART-2026-AQ65185
CLEANSTART-2026-AY53560
CLEANSTART-2026-AY89602
CLEANSTART-2026-BB70412
CLEANSTART-2026-BD19566
CLEANSTART-2026-BG69533
CLEANSTART-2026-BN28456
CLEANSTART-2026-BS27946
CLEANSTART-2026-BT04364
CLEANSTART-2026-BU65096
CLEANSTART-2026-CB00984
CLEANSTART-2026-CD91667
CLEANSTART-2026-CE10526
CLEANSTART-2026-CN84623
CLEANSTART-2026-CR55131
CLEANSTART-2026-CS02869
CLEANSTART-2026-DK45320
CLEANSTART-2026-DM19620
CLEANSTART-2026-DM93480
CLEANSTART-2026-DN70218
CLEANSTART-2026-DO31246
CLEANSTART-2026-DR81473
CLEANSTART-2026-DV49899
CLEANSTART-2026-DW32113
CLEANSTART-2026-EI06494
CLEANSTART-2026-EP10142
CLEANSTART-2026-FB07695
CLEANSTART-2026-FH54780
CLEANSTART-2026-FH63386
CLEANSTART-2026-FV86809
CLEANSTART-2026-GB02436
CLEANSTART-2026-GB46352
CLEANSTART-2026-GG06672
CLEANSTART-2026-GN78570
CLEANSTART-2026-GR41888
CLEANSTART-2026-GW28934
CLEANSTART-2026-GY48351
CLEANSTART-2026-HF07497
CLEANSTART-2026-HI89495
CLEANSTART-2026-HQ88036
CLEANSTART-2026-IP78312
CLEANSTART-2026-IS19112
CLEANSTART-2026-IW91368
CLEANSTART-2026-IY98831
CLEANSTART-2026-JO51351
CLEANSTART-2026-JV26120
CLEANSTART-2026-JZ43336
CLEANSTART-2026-KA21986
CLEANSTART-2026-KC83705
CLEANSTART-2026-KF86214
CLEANSTART-2026-KL61187
CLEANSTART-2026-KT28044
CLEANSTART-2026-LA67881
CLEANSTART-2026-LG79681
CLEANSTART-2026-LK73694
CLEANSTART-2026-LM43244
CLEANSTART-2026-LN66182
CLEANSTART-2026-LO90739
CLEANSTART-2026-LT10352
CLEANSTART-2026-LZ60917
CLEANSTART-2026-MI12470
CLEANSTART-2026-MK07381
CLEANSTART-2026-ML42911
CLEANSTART-2026-MR50866
CLEANSTART-2026-MW24969
CLEANSTART-2026-MW66533
CLEANSTART-2026-MX15076
CLEANSTART-2026-MZ44265
CLEANSTART-2026-NB51079
CLEANSTART-2026-NB55984
CLEANSTART-2026-NB83265
CLEANSTART-2026-NS33477
CLEANSTART-2026-NX54250
CLEANSTART-2026-OD56729
CLEANSTART-2026-OF37807
CLEANSTART-2026-OH43332
CLEANSTART-2026-OH47925
CLEANSTART-2026-PB32291
CLEANSTART-2026-PE52216
CLEANSTART-2026-PK19530
CLEANSTART-2026-PY36202
CLEANSTART-2026-QL45485
CLEANSTART-2026-QN98167
CLEANSTART-2026-QO20135
CLEANSTART-2026-QO29688
CLEANSTART-2026-QP84300
CLEANSTART-2026-QS28268
CLEANSTART-2026-QS87161
CLEANSTART-2026-RR42740
CLEANSTART-2026-RX06063
CLEANSTART-2026-SO13464
CLEANSTART-2026-SV08737
CLEANSTART-2026-TC76376
CLEANSTART-2026-TE02851
CLEANSTART-2026-TH33219
CLEANSTART-2026-TL66481
CLEANSTART-2026-UF28691
CLEANSTART-2026-UO31069
CLEANSTART-2026-UQ68343
CLEANSTART-2026-UW03847
CLEANSTART-2026-UX07516
CLEANSTART-2026-UY10441
CLEANSTART-2026-VN02574
CLEANSTART-2026-VT65447
CLEANSTART-2026-VU08393
CLEANSTART-2026-VW96633
CLEANSTART-2026-VZ08395
CLEANSTART-2026-WA84208
CLEANSTART-2026-WB12909
CLEANSTART-2026-WB89098
CLEANSTART-2026-WL14185
CLEANSTART-2026-WO11084
CVE-2026-33810
GO-2026-4866
OPENSUSE-SU-2026:10525-1
OPENSUSE-SU-2026:20571-1
RHSA-2026:19135
RHSA-2026:19144
RHSA-2026:19353
RHSA-2026:19719
RHSA-2026:19720
RHSA-2026:19721
RHSA-2026:7291
SUSE-SU-2026:1320-1
SUSE-SU-2026:1580-1

Produtos afetados

Openssl
Red Os
Rocky Linux