CVE-2026-42010
Modified Modified - Updated After Analysis

Authentication Bypass in GnuTLS via RSA-PSK NUL Character

Vulnerability report for CVE-2026-42010, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-05-07

Last updated on: 2026-07-06

Assigner: Red Hat, Inc.

Description

A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-05-07
Last Modified
2026-07-06
Generated
2026-07-07
AI Q&A
2026-05-07
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
gnutls gnutls *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-170 The product does not terminate or incorrectly terminates a string or array with a null character or equivalent terminator.
CWE-626 The product does not properly handle null bytes or NUL characters when passing data between different representations or components.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Compliance Impact

The vulnerability allows an attacker to bypass authentication and gain unauthorized access to systems using GnuTLS with RSA-PSK configuration. Such unauthorized access can lead to exposure or compromise of sensitive data, which may result in non-compliance with data protection regulations like GDPR and HIPAA that require strict access controls and protection of personal or health information.

Therefore, this flaw could negatively impact compliance with common standards and regulations by undermining authentication mechanisms and potentially exposing protected data.

Mitigation Strategies

To mitigate the CVE-2026-42010 vulnerability, you should update GnuTLS to a version where the username comparison logic has been corrected to properly handle NUL characters in usernames.

This fix prevents authentication bypass by ensuring usernames are fully compared rather than truncated at NUL characters.

Executive Summary

The CVE-2026-42010 vulnerability in GnuTLS is an authentication bypass issue. It occurs because servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) incorrectly match usernames that contain a NUL character with truncated versions of those usernames. This improper handling of NUL characters in usernames allows a remote attacker to send a specially crafted username and bypass the authentication process.

Impact Analysis

This vulnerability can allow an attacker to gain unauthorized access to a system by circumventing the authentication process. Because the server incorrectly matches usernames containing NUL characters with truncated usernames, an attacker can exploit this flaw to bypass authentication controls, potentially leading to unauthorized access to sensitive data or system functions.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-42010. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart