CVE-2026-32283

216.73.217.22

· Published 08/04/2026 02:16 · Modified 08/04/2026 21:26

Labels: CVE-2026-32283 2026-04-08 CVE-2026-32283 [email protected]

Essential information

Published: 08/04/2026 02:16
Modified: 08/04/2026 21:26
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

NVD status

Status: Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
golang / golang	`cpe:2.3:a:golang:golang::::::::`
tls / tls	`cpe:2.3:a:tls:tls:1.3:::::::*`

CVE-2026-32283

Essential information

Description

NVD status

Affected products (CPE)

References