CVE-2026-57914

EUVD-2026-39648
By sending a deeply nested ASN1 structure to a Apache Kerby client or service, it's possible to trigger a StackOverFlow Exception which can lead to denial of service issues. Users are recommended to upgrade to version 2.1.2, which fixes this issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
apacheCNA
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
apachekerby
𝑥
< 2.1.2
CNA
Common Weakness Enumeration
References
https://lists.apache.org/thread/w98h2q8wz0bq97vhz4vf55hqomcb2j1m
http://www.openwall.com/lists/oss-security/2026/06/26/7