VDB
CVE-2026-27138
CVE-2026-27138
PUBLISHED
Panic in name constraint checking for malformed certificates in crypto/x509
EPSS 0.03% · 8.8th percentile
Risk Scores
EPSS Score
0.03%
8.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | golang | 1.26.0-0, 1.26.0-0 |
| Cloudflare | dns |
Exploit Intelligence
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GHSA-7hfw-r8qc-89v4.json (github-poc)
- GO-2026-4600.yaml (github-poc)
- GO-2026-4600.yaml (github-poc)
- GO-2026-4600.yaml (github-poc)
…and 11 more exploits
Timeline
- Feb 17, 2026 CVE ID Reserved
- Mar 6, 2026 CVE Published
- Mar 7, 2026 EPSS Score
- Mar 8, 2026 EPSS Score
- Mar 9, 2026 EPSS Score
- Mar 10, 2026 CVE Updated
- Mar 11, 2026 EPSS Score
- Mar 12, 2026 EPSS Score
- Mar 13, 2026 EPSS Score
- Mar 14, 2026 EPSS Score
- Mar 15, 2026 EPSS Score
- Mar 16, 2026 EPSS Score