Erlang/OTP 27.x < 27.3.4.10 / 28.x < 28.4.2 OCSP Certificate Validation Bypass (CVE-2026-32144)

Version 1.3

Apr 13, 2026, 9:49 AM

CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:U")
CVSS metrics ("Cvssv4 threat score" set to 7.6)
Exploit attributes ("Exploitability ease" set to "No known exploits are available")
Exploit attributes ("Exploit available" set to "False")
CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")