Vulnerability in Pyca Cryptography

CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" prese…

Vulnerability class: Improper Certificate Validation

EPSS: 0.000 (1.0th percentile) — read the EPSS interpretation.