CyberRota
← Ana sayfaya dön

CVE-2026-42014

MEDIUM · CVSS 6.6 EPSS %0.15

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-16T02:16:19.140 · Çekilme zamanı: 2026-06-30T12:21:34.028319+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-42014
Severity
MEDIUM
CVSS
6.6
EPSS
%0.15
Office

Orijinal NVD Açıklaması

A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path.