A vulnerability, which was classified as problematic, was found in Go standard library crypto-tls up to 1.25.11/1.26.4. This impacts an unknown function of the component TLS Handshake. Executing a manipulation can lead to insertion of sensitive information into sent data.
The identification of this vulnerability is CVE-2026-42505. The attack may be launched remotely. There is no exploit available.