What is CVE-2026-32884?

CVE-2026-32884 is a medium-severity vulnerability in Randombit Botan, classified under Improper Certificate Validation. CVSS score: 5.9/10. Published 2026-03-30.

How severe is CVE-2026-32884?

Medium severity. CVSS v3 base score is 5.9 out of 10.

Vulnerability in Randombit Botan

CVE-2026-32884

Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of allowable DNS names, if no subject alternative name is defined in the end-entity…

Vulnerability class: Improper Certificate Validation

EPSS: 0.000 (0.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.9 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

Randombit Botan — versions < 3.11.0

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

References

https://github.com/randombit/botan/security/advisories/GHSA-7c3g-7763-ggj5 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2026-32884?: CVE-2026-32884 is a medium-severity vulnerability in Randombit Botan, classified under Improper Certificate Validation. CVSS score: 5.9/10. Published 2026-03-30.
How severe is CVE-2026-32884?: Medium severity. CVSS v3 base score is 5.9 out of 10.