VYPR
Medium severity5.9NVD Advisory· Published Mar 6, 2026· Updated Apr 21, 2026

CVE-2026-27138

CVE-2026-27138

Description

Certificate verification can panic when a certificate in the chain has an empty DNS name and another certificate in the chain has excluded name constraints. This can crash programs that are either directly verifying X.509 certificate chains, or those that use TLS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

170

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.