[UPDATE] [high] OpenSSL: Multiple Vulnerabilities
An attacker can exploit multiple vulnerabilities in OpenSSL to execute arbitrary code, bypass security measures, disclose confidential information, manipulate data, or cause a denial-of-service condition.
CSIRTS triage
- What
- Multiple vulnerabilities in OpenSSL can allow arbitrary code execution, security bypass, information disclosure, and denial-of-service.
- Who is affected
- Users of OpenSSL are affected by these vulnerabilities.
- Urgency
- Remediation is urgent due to the high severity and potential for exploitation.
- Action
- Update to the latest version of OpenSSL.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch OpenSSL
Get an email when a new OpenSSL advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1852
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-341800.51% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 40% of all scored CVEs.
- Low exploitation riskCVE-2026-341810.20% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 9% of all scored CVEs.
- Low exploitation riskCVE-2026-341820.24% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 15% of all scored CVEs.
- Low exploitation riskCVE-2026-341830.51% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 40% of all scored CVEs.
- Low exploitation riskCVE-2026-351880.24% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 16% of all scored CVEs.
- Low exploitation riskCVE-2026-427640.68% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 48% of all scored CVEs.
- Low exploitation riskCVE-2026-427650.42% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 34% of all scored CVEs.
- Low exploitation riskCVE-2026-427660.60% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 44% of all scored CVEs.
- Low exploitation riskCVE-2026-427670.35% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 27% of all scored CVEs.
- Low exploitation riskCVE-2026-427680.35% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 27% of all scored CVEs.
Referenced CVEs
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- unknownMultiple vulnerabilities in Tenable Identity Exposure (June 24, 2026)cert-fr-avis
- unknownMultiple Vulnerabilities in Microsoft Products (June 22, 2026)cert-fr-avis
- highCVE-2026-45447: Heap Use-After-Free in the PKCS7_verify() Functionmsrc
- highCVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keysmsrc
- highCVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handlermsrc
- criticalCVE-2026-34182: CMS AuthEnvelopedData Processing May Accept Forged Messagesmsrc
- highCVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversionmsrc
- lowCVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()msrc
- highCVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryptionmsrc
- mediumCVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modesmsrc
- mediumCVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryptionmsrc
- mediumCVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryptionmsrc
Recent advisories for OpenSSL
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- highGHSA-mv28-wj57-f57g: YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via `!ope…ghsa · 2026-07-09
- medium[UPDATE] [medium] OpenSSL and LibreSSL: Multiple vulnerabilitiescert-bund · 2026-07-09
- medium[UPDATE] [medium] OpenSSL: Multiple vulnerabilitiescert-bund · 2026-07-08
- mediumCVE-2026-14355: In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8.5.* before 8.…nvd · 2026-07-03
- low[UPDATE] [low] OpenSSL: Vulnerability allows bypassing security measurescert-bund · 2026-07-02
- mediumCVE-2026-14355: ext/openssl: Memory corruption in openssl_encrypt with AES-WRAP-PADmsrc · 2026-07-02
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10