CVE-2025-14831
MediumCVSS 5.3Exploitation Probability (EPSS)
Low risk46th percentile - higher than 46% of all known CVEs
Summary
A flaw in GnuTLS allows a denial of service (DoS) attack via specially crafted certificates with a large number of name constraints and subject alternative names (SANs), causing excessive CPU and memory consumption.
Risk Assessment
The organization risks service disruption in applications relying on GnuTLS, potentially leading to system and application unavailability.
Recommendation
Immediately update GnuTLS to the latest patched version and monitor systems for unusual CPU and memory usage.
Original NVD description (English source)
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).

