What is the CVSS score of EUVD-2026-26926?

EUVD-2026-26926 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.1%.

Which versions of GnuTLS are affected by EUVD-2026-26926?

CVE-2026-33846 is a heap buffer overflow in GnuTLS DTLS handshake processing that allows remote attackers to crash applications or corrupt memory without authentication.. A patch is available.

How to fix or mitigate EUVD-2026-26926?

Within 24 hours: Identify all systems running GnuTLS with DTLS support (check gnutls package versions across RHEL 6-10 and OCP 4 environments using rpm -qa gnutls or equivalent). Isolate or restrict network access to affected systems if possible. Within 7 days: Implement network segmentation to limit DTLS traffic to trusted sources; prioritize systems with public-facing DTLS services. Monitor Red Hat security advisories and GnuTLS upstream repositories for patch releases. Within 30 days: Prepare and test GnuTLS updates immediately upon vendor release; establish rollback procedures. If running OpenShift Container Platform 4, contact Red Hat support for patched container images.

GnuTLS EUVD-2026-26926

| CVE-2026-33846 HIGH

Improper Handling of Length Parameter Inconsistency (CWE-130)

2026-05-04 redhat

Buffer Overflow Red Hat Suse

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Analysis Generated

May 04, 2026 - 10:01 vuln.today

EUVD ID Assigned

May 04, 2026 - 09:45 euvd

EUVD-2026-26926

Analysis Generated

May 04, 2026 - 09:45 vuln.today

CVE Published

May 04, 2026 - 09:08 nvd

HIGH 7.5

DescriptionNVD

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length field remains consistent across all fragments of the same logical message. An attacker can exploit this by sending crafted DTLS fragments with conflicting message_length values, causing the implementation to allocate a buffer based on a smaller initial fragment and subsequently write beyond its bounds using larger, inconsistent fragments. Because the merge operation does not enforce proper bounds checking against the allocated buffer size, this results in an out-of-bounds write on the heap. The vulnerability is remotely exploitable without authentication via the DTLS handshake path and can lead to application crashes or potential memory corruption.

AnalysisAI

Heap buffer overflow in GnuTLS DTLS handshake allows remote unauthenticated attackers to crash applications or corrupt memory. The vulnerability stems from inconsistent fragment validation in merge_handshake_packet(), where attackers can send crafted DTLS fragments with conflicting message_length values to trigger out-of-bounds writes. …

RemediationAI

Within 24 hours: Identify all systems running GnuTLS with DTLS support (check gnutls package versions across RHEL 6-10 and OCP 4 environments using rpm -qa gnutls or equivalent). Isolate or restrict network access to affected systems if possible. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory