CVE-2026-42010
Modified Modified - Updated After Analysis
Authentication Bypass in GnuTLS via RSA-PSK NUL Character

Publication date: 2026-05-07

Last updated on: 2026-06-10

Assigner: Red Hat, Inc.

Description
A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-07
Last Modified
2026-06-10
Generated
2026-06-17
AI Q&A
2026-05-07
EPSS Evaluated
2026-06-15
NVD
CVE-2026-42010
EUVD
EUVD-2026-28354
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
gnutls gnutls *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-170 The product does not terminate or incorrectly terminates a string or array with a null character or equivalent terminator.
CWE-626 The product does not properly handle null bytes or NUL characters when passing data between different representations or components.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

To mitigate the CVE-2026-42010 vulnerability, you should update GnuTLS to a version where the username comparison logic has been corrected to properly handle NUL characters in usernames.

This fix prevents authentication bypass by ensuring usernames are fully compared rather than truncated at NUL characters.

Executive Summary

The CVE-2026-42010 vulnerability in GnuTLS is an authentication bypass issue. It occurs because servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) incorrectly match usernames that contain a NUL character with truncated versions of those usernames. This improper handling of NUL characters in usernames allows a remote attacker to send a specially crafted username and bypass the authentication process.

Impact Analysis

This vulnerability can allow an attacker to gain unauthorized access to a system by circumventing the authentication process. Because the server incorrectly matches usernames containing NUL characters with truncated usernames, an attacker can exploit this flaw to bypass authentication controls, potentially leading to unauthorized access to sensitive data or system functions.

Compliance Impact

The vulnerability allows an attacker to bypass authentication and gain unauthorized access to systems using GnuTLS with RSA-PSK configuration. Such unauthorized access can lead to exposure or compromise of sensitive data, which may result in non-compliance with data protection regulations like GDPR and HIPAA that require strict access controls and protection of personal or health information.

Therefore, this flaw could negatively impact compliance with common standards and regulations by undermining authentication mechanisms and potentially exposing protected data.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-42010. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart