CVE Catalog

CVE-2025-14831

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.64%

46th percentile - higher than 46% of all known CVEs

Summary

A flaw in GnuTLS allows a denial of service (DoS) attack via specially crafted certificates with a large number of name constraints and subject alternative names (SANs), causing excessive CPU and memory consumption.

Risk Assessment

The organization risks service disruption in applications relying on GnuTLS, potentially leading to system and application unavailability.

Recommendation

Immediately update GnuTLS to the latest patched version and monitor systems for unusual CPU and memory usage.

Original NVD description (English source)

A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

Vulnerability data from NVD (NIST) · CISA KEV · EPSS