CVE-2026-32144
published 2026-04-07CVE-2026-32144: Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing…
PriorityP348high7.4CVSS 3.1
AVNACHPRNUINSUCHIHAN
EPSS
0.20%
9.9th percentile
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification.
The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning EKU, and use it to forge OCSP responses that mark revoked certificates as valid.
This affects SSL/TLS clients using OCSP stapling, which may accept connections to servers with revoked certificates, potentially transmitting sensitive data to compromised servers. Applications using the public_key:pkix_ocsp_validate/5 API directly are also affected, with impact depending on usage context.
This vulnerability is associated with program files lib/public_key/src/pubkey_ocsp.erl and program routines pubkey_ocsp:is_authorized_responder/3.
This issue affects OTP from OTP 27.0 until OTP 28.4.2 and 27.3.4.10 corresponding to public_key from 1.16 until 1.20.3 and 1.17.1.2, and ssl from 11.2 until 11.5.4 and 11.2.12.7.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | erlang | < erlang 1:27.3.4.10+dfsg-1 (sid) | erlang 1:27.3.4.10+dfsg-1 (sid) |
| erlang | erlang_otp | >= 27.0 < 27.3.4.10 | 27.3.4.10 |
| erlang | erlang_otp | >= 28.0 < 28.4.2 | 28.4.2 |
| erlang | erlang_public_key | >= 1.16 < 1.17.1.2 | 1.17.1.2 |
| erlang | erlang_public_key | >= 1.18 < 1.20.3 | 1.20.3 |
| erlang | erlang_ssl | < 11.5.4 | 11.5.4 |
| erlang | erlang_ssl | >= 11.2 < 11.2.12.7 | 11.2.12.7 |
| erlang | otp | >= 1.16 < * | * |
| erlang | otp | >= 11.2 < * | * |
| erlang | otp | >= 27.0 < * | * |
| erlang | otp | >= 601a012837ea0a5c8095bf24223132824177124d < * | * |
CVSS provenance
nvdv3.17.4HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv4.07.6HIGHCVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv7.6HIGH
vendor_debian7.6LOW
vendor_redhat7.6HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
vendor_redhat·2026-04-07·CVSS 7.6
CVE-2026-32144 [HIGH] CWE-347 Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
A flaw was found in Erlang OTP public_key. This improper certificate validation vulnerability allows a remote attacker to bypass Online Certificate Status Protocol (OCSP) designated-responder authorization. The vulnerability stems from missing signature verification during OCSP response validation, enabling an attacker to forge responses that mark revoked certificates as valid. Consequently, clients may accept connections to compromised servers, potentially leading to the transmission of sensitive data.
Mitigation: Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease
Debian
CVE-2026-32144: erlang - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_o...
vendor_debian·2026·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144: erlang - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_o...
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning EKU, and use it to forge OCSP responses that mark revoked certificates as valid. This affects SSL/TLS clients using OCSP stapling, which may a
VulDB
Erlang OTP up to 28.4.2 Self-Signed Certificate pubkey_ocsp.erl certificate validation (Nessus ID 305687 / WID-SEC-2026-0998)
vuldb·2026-04-13·CVSS 7.6
CVE-2026-32144 [HIGH] Erlang OTP up to 28.4.2 Self-Signed Certificate pubkey_ocsp.erl certificate validation (Nessus ID 305687 / WID-SEC-2026-0998)
A vulnerability was found in Erlang OTP up to 28.4.2 and classified as critical. Affected by this issue is some unknown functionality in the library lib/public_key/src/pubkey_ocsp.erl of the component Self-Signed Certificate Handler. Such manipulation leads to improper certificate validation.
This vulnerability is referenced as CVE-2026-32144. It is possible to launch the attack remotely. No exploit is available.
OSV
CVE-2026-32144: Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via
osv·2026-04-07·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144: Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning EKU, and use it to forge OCSP responses that mark revoked certificates as valid. This affects SSL/TLS clients using OCSP stapling, which may a
No detection rules found.
No public exploits indexed.
Wiz
CVE-2026-32144 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-32144 :
Erlang OTP vulnerability analysis and mitigation
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification.
The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning EKU, and use it to forge OCSP responses that mark revoked certificates
Bugzilla
CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [fedora-all]
bugzilla·2026-04-07·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [fedora-all]
CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
CVE-2026-32144 (OCSP designated-responder authorization bypass in public_key) only affects Erlang/OTP ≥ 27.0. Fedora ships Erlang 26.2.5.x which is explicitly listed as unaffected in the upstream security advisory: https://github.com/erlang/otp/security/advisories/GHSA-gxrm-pf64-99xm. Closing as NOTABUG.
Bugzilla
CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [epel-all]
bugzilla·2026-04-07·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [epel-all]
CVE-2026-32144 erlang: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification [epel-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
CVE-2026-32144 (OCSP designated-responder authorization bypass in public_key) only affects Erlang/OTP ≥ 27.0, as confirmed by the upstream security advisory: https://github.com/erlang/otp/security/advisories/GHSA-gxrm-pf64-99xm
Red Hat and the Fedora community have switched Erlang packaging for EPEL to the CentOS Messaging SIG (installable via `dnf install centos-release-messaging`). The CentOS Messaging SIG
Bugzilla
CVE-2026-32144 Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
bugzilla·2026-04-07·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144 Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
CVE-2026-32144 Erlang OTP: Erlang OTP public_key: OCSP authorization bypass and information disclosure due to missing signature verification
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification.
The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning
https://cna.erlef.org/cves/CVE-2026-32144.htmlhttps://github.com/erlang/otp/commit/49033a6d93a5be0ee0dce04e1fb8b4ae7de1e0c0https://github.com/erlang/otp/commit/ac7ff528be857c5d35eb29c7f24106e3a16d4891https://github.com/erlang/otp/security/advisories/GHSA-gxrm-pf64-99xmhttps://osv.dev/vulnerability/EEF-CVE-2026-32144https://www.erlang.org/doc/system/versions.html#order-of-versionshttps://access.redhat.com/security/cve/CVE-2026-32144https://bugzilla.redhat.com/show_bug.cgi?id=2455896https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32144.json
2026-04-07
Published