CVE-2025-14831

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-14831

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-14831.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-14831

Downstream

ALPINE-CVE-2025-14831

BELL-CVE-2025-14831

DEBIAN-CVE-2025-14831

DLA-4492-1

DSA-6140-1

ECHO-56a4-40ae-0680

OESA-2026-1650

RHSA-2026:3477

RHSA-2026:4188

RHSA-2026:5585

RHSA-2026:6618

RHSA-2026:6630

RHSA-2026:6737

RHSA-2026:6738

RLSA-2026:3477

RLSA-2026:4188

RLSA-2026:5585

SUSE-SU-2026:0829-1

SUSE-SU-2026:0862-1

SUSE-SU-2026:20654-1

SUSE-SU-2026:20708-1

SUSE-SU-2026:20962-1

SUSE-SU-2026:20968-1

SUSE-SU-2026:20984-1

UBUNTU-CVE-2025-14831

USN-8043-1

openSUSE-SU-2026:10177-1

openSUSE-SU-2026:20446-1

Related

Published

2026-02-09T15:16:09.937Z

Modified

2026-04-10T18:29:29.473338665Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

[none]

Details

A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-14831.json"