Critical

Improper X.509 NameConstraints Enforcement in crypton-x509-validation

IdentifiersCVE-2026-9648CWE-295

CVE-2026-9648 affects the Haskell crypton-x509-validation library. The vulnerability is caused by the library failing to enforce X.509 NameConstraints during certificate validation, a safeguard defined in RFC 5280. As a result, TLS clients using the library may accept certificates whose Subject Alternative Names fall outside the issuing CA’s permitted subtrees. This breaks the intended restriction model for name-constrained subordinate certificate authorities and allows certificates to validate even when they exceed the CA’s authorized namespace.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

If an attacker compromises a name-constrained subordinate CA, they can issue certificates for domains outside that CA’s intended scope and have affected Haskell TLS clients accept them as valid. This undermines certificate validation, enables unauthorized domain impersonation and TLS interception, and can expose credentials, secrets, and other sensitive information. The available reporting indicates high confidentiality and integrity impact, with no direct availability impact.

Mitigation

If you can’t patch tonight, do this now.

If immediate upgrade is not possible, reduce reliance on affected certificate validation paths and avoid using the vulnerable library for trust decisions involving delegated PKI or name-constrained subordinate CAs until patched. Where feasible, use certificate validation implementations that correctly enforce X.509 NameConstraints. The primary recommended action in the provided content is to upgrade without delay.

Remediation

Patch, then assume compromise.

Upgrade crypton-x509-validation to version 1.9.1 or later. The provided content states that all prior versions are affected and that version 1.9.1 was released to address the vulnerability.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

HaskellCrypton-X509-Validationapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

7 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

7 SOURCESView more in app

security online infoNews

Jun 16, 2026

Haskell TLS Vulnerability: CVE-2026-9648 NameConstraints

A certificate validation vulnerability in the Haskell crypton-x509-validation library caused by failure to enforce X.509 NameConstraints, allowing TLS clients to trust certificates outside the issuing CA’s permitted scope.

cvefeed high severityNews

Jun 11, 2026

CVE-2026-9648 - CVE-2026-9648

A vulnerability in the crypton-x509-validation Haskell library where X.509 NameConstraints are not enforced, allowing acceptance of certificates outside permitted subtrees and enabling broader domain impersonation if a constrained sub-CA is compromised.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity4

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES

MITRE CVE

cve.org · CVE-2026-9648

NVD

nvd.nist.gov/vuln/detail/CVE-2026-9648

MITRE CWE · CWE-295

cwe.mitre.org

github.com

github.com/haskell/security-advisories/pull/332

github.com

github.com/kazu-yamamoto/crypton-certificate/pull/30

github.com

github.com/kazu-yamamoto/crypton-certificate/pull/30/changes/f4b77edf6ead77f4a886da40e41eab20f0180e39

hackage.haskell.org

hackage.haskell.org/package/crypton-x509-validation-1.9.1/revisions

kb.cert.org

kb.cert.org/vuls/id/862559