CVE-2025-14831

low-risk

Published 2026-02-09

A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

Do I need to act?

0.06% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.3/10 Medium

NETWORK / LOW complexity

References (19)

https://access.redhat.com/errata/RHSA-2026:3477

https://access.redhat.com/errata/RHSA-2026:4188

https://access.redhat.com/errata/RHSA-2026:4655

https://access.redhat.com/errata/RHSA-2026:4943

https://access.redhat.com/errata/RHSA-2026:5585

https://access.redhat.com/errata/RHSA-2026:5606

https://access.redhat.com/errata/RHSA-2026:6618

https://access.redhat.com/errata/RHSA-2026:6630

https://access.redhat.com/errata/RHSA-2026:6737

https://access.redhat.com/errata/RHSA-2026:6738

https://access.redhat.com/errata/RHSA-2026:7329

https://access.redhat.com/errata/RHSA-2026:7335

https://access.redhat.com/errata/RHSA-2026:7477

https://access.redhat.com/errata/RHSA-2026:8746

https://access.redhat.com/errata/RHSA-2026:8747

https://access.redhat.com/errata/RHSA-2026:8748

https://access.redhat.com/security/cve/CVE-2025-14831

https://bugzilla.redhat.com/show_bug.cgi?id=2423177

https://gitlab.com/gnutls/gnutls/-/issues/1773

/ 100

low-risk

Severity 21/34 · High

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal