CVE-2025-14831

MEDIUM

GnuTLS - DoS

Title source: llm

Description

A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

References (19)

[Issue Tracking] https://gitlab.com/gnutls/gnutls/-/issues/1773

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:5585

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:6618

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:6630

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:6737

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:6738

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:7335

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:8747

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:8746

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:3477

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:4188

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:4655

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:4943

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:5606

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:7329

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:7477

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2026:8748

[Vendor Advisory] https://access.redhat.com/security/cve/CVE-2025-14831

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=2423177

Scores

CVSS v3 5.3

EPSS 0.0006

EPSS Percentile 18.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-407

Status published

Products (28)

Red Hat/Red Hat AI Inference Server 3.2 sha256:54616c9f3e4d27120504b0b2020432ef3ff85286a50de7be842f05df0cfcd69e

Red Hat/Red Hat AI Inference Server 3.3 sha256:0ec114881d9dcd28a5dbbb2ec0ea1301ad87d5ae133121ce8167ef29d19802cc

Red Hat/Red Hat AI Inference Server 3.3 sha256:813ba7ccd1696b44deb90d9e6cd8af114bdb47781eae7f27246a81fba062a892

Red Hat/Red Hat AI Inference Server 3.3 sha256:be6d568f28044533e4ad80f0856407c359e2eaf31a6b89cada433e6575d2300e

Red Hat/Red Hat Ceph Storage 8 sha256:1160569002c25d3d349bbe41b57eeffade438853d3419edca01813227440f414

Red Hat/Red Hat Ceph Storage 8 sha256:a0f0f9770911d6a0fc522f304942765059643193e95c9f6e505462f98a979db1

Red Hat/Red Hat Discovery 2 sha256:040dadd657afdb9f0914f896a4962fd3dbf40b70c8037e4d72b6801b766c9b7d

Red Hat/Red Hat Discovery 2 sha256:062310de4b34e278f8c7e4634def673a77d1228d493541ef1264ba4cb83b68eb

Red Hat/Red Hat Enterprise Linux 10 0:3.8.10-3.el10_1

Red Hat/Red Hat Enterprise Linux 10.0 Extended Update Support 0:3.8.9-9.el10_0.17

... and 18 more

Published Feb 09, 2026

Tracked Since Feb 18, 2026