CVE-2026-32992

Published: Mag 14, 2026 Last Modified: Mag 14, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,2

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: low

Availability: none

Description

AI Translation Available

SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials.

295

Improper Certificate Validation

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Authentication

Potential Impacts:

Bypass Protection Mechanism Gain Privileges Or Assume Identity

Applicable Platforms

Technologies: Mobile, Not Technology-Specific, Web Based

View CWE Details

https://support.cpanel.net/hc/en-us/articles/40437241987607…

https://support.cpanel.net/hc/en-us/articles/40437241987607-Security-CVE-2026-3…

CVE-2026-32992

Description

Improper Certificate Validation

Common Consequences

Applicable Platforms

Iscriviti alla newsletter