openssl
298 tracked vulnerabilities.
CVE-2026-2673
MEDIUM
OpenSSL TLS 1.3 server may choose unexpected key agreement group
Mar 13, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-22796
MEDIUM
Openssl < 1.0.2zn - Improper Condition Check
Jan 27, 2026
CVSS 5.3
EPSS 0.01
CVE-2026-22795
MEDIUM
OpenSSL 1.1.1-1.1.1zd, 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - DoS via PKCS#12 Parsing
Jan 27, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-69421
HIGH
OpenSSL 1.0.2-1.0.2z, 1.1.1-1.1.1zd, 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - DoS via PKCS#12
Jan 27, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-69420
HIGH
OpenSSL 1.1.1-1.1.1zd, 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - DoS via Malformed TSR
Jan 27, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-69419
HIGH
OpenSSL 1.1.1-1.1.1zd, 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - Out-of-bounds Write
Jan 27, 2026
CVSS 7.4
EPSS 0.00
CVE-2025-69418
MEDIUM
OpenSSL 1.1.1-1.1.1zd, 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - OCB API Missing Cryptographic Step
Jan 27, 2026
CVSS 4.0
EPSS 0.00
CVE-2025-68160
MEDIUM
Openssl < 1.0.2zn - Out-of-Bounds Write
Jan 27, 2026
CVSS 4.7
EPSS 0.00
CVE-2025-66199
MEDIUM
OpenSSL 3.3.0-3.3.6 - Denial of Service via TLS 1.3 Certificate Compression
Jan 27, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-15469
MEDIUM
OpenSSL 3.5.0-3.5.4 - Improper Verification of Cryptographic Signature via One-Shot Signing Algorithms
Jan 27, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-15468
MEDIUM
OpenSSL 3.3.0-3.3.6 - Denial of Service via NULL Pointer Dereference in SSL_CIPHER_find()
Jan 27, 2026
CVSS 5.9
EPSS 0.01
CVE-2025-15467
HIGH
OpenSSL 3.0.0-3.0.18, 3.3.0-3.3.5, 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - Stack-based Buffer Overflow via CMS AEAD IV Parsing
Jan 27, 2026
CVSS 8.8
EPSS 0.48
CVE-2025-11187
MEDIUM
OpenSSL 3.4.0-3.4.3, 3.5.0-3.5.4, 3.6.0 - Stack-based Buffer Overflow in PKCS#12 PBMAC1 MAC Verification
Jan 27, 2026
CVSS 6.1
EPSS 0.01
CVE-2025-9232
MEDIUM
OpenSSL 3.0.16-3.0.17, 3.2.4-3.2.5, 3.3.3-3.3.4, 3.4.0-3.4.2, 3.5.0-3.5.3 DoS via HTTP Client API no_proxy
Sep 30, 2025
CVSS 5.9
EPSS 0.02
CVE-2025-9231
MEDIUM
OpenSSL 3.2.0-3.2.5, 3.3.0-3.3.4, 3.4.0-3.4.2, 3.5.0-3.5.3 - SM2 Timing Side-Channel on 64-bit ARM
Sep 30, 2025
CVSS 6.5
EPSS 0.02
CVE-2025-9230
HIGH
CMS Decryptor <unknown - Memory Corruption
Sep 30, 2025
CVSS 7.5
EPSS 0.02
CVE-2025-4575
MEDIUM
OpenSSL 3.5 - Improper Certificate Validation via -addreject Option
May 22, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-12797
MEDIUM
TLS/DTLS - Man-in-the-Middle
Feb 11, 2025
CVSS 6.3
EPSS 0.02
CVE-2024-13176
MEDIUM
ECDSA Signature Computation - Timing Side-Channel
Jan 20, 2025
CVSS 4.1
EPSS 0.01
CVE-2024-4741
HIGH
OpenSSL 3.3.0-3.3.1, 3.2.0-3.2.2, 3.1.0-3.1.6, 3.0.0-3.0.14, 1.1.1-1.1.1y - Use-After-Free in SSL_free_buffers
Nov 13, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-9143
MEDIUM
Low-level EC APIs - Memory Corruption
Oct 16, 2024
CVSS 4.3
EPSS 0.06
CVE-2024-6119
HIGH
OpenSSL 3.0.0-3.0.14, 3.2.0-3.2.2, 3.3.0-3.3.1 - Denial of Service via Invalid Memory Access in Certificate Name Check
Sep 03, 2024
CVSS 7.5
EPSS 0.67
CVE-2024-5535
CRITICAL
OpenSSL 1.0.2-1.0.2zk, 1.1.1-1.1.1za, 3.0.0-3.0.14, 3.1.0-3.1.6, 3.2.0-3.2.2, 3.3.0-3.3.1 - Out-of-bounds Read
Jun 27, 2024
CVSS 9.1
EPSS 0.06
CVE-2024-4603
MEDIUM
OpenSSL 3.0.0-3.0.13, 3.1.0-3.1.5, 3.2.0-3.2.1, 3.3.0 - Denial of Service via DSA Key Parameter Check
May 16, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-2511
MEDIUM
OpenSSL 3.2.0-3.2.1, 3.1.0-3.1.5, 3.0.0-3.0.13, 1.1.1-1.1.1x - Denial of Service via TLSv1.3 Session Cache
Apr 08, 2024
CVSS 5.9
EPSS 0.54
Products
Quick Filters