OpenSSL
Moderate fix5 remedies
cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*, +1 more
Moderate fix5 remedies
- >= 3.6, < 3.6.2
- >= 3.5, < 3.5.6
- >= 3.4, < 3.4.5
- >= 3.3, < 3.3.7
- >= 3.0, < 3.0.20
OpenSSL Heap Buffer Overflow Vulnerability in Hexadecimal Conversion
Vulnerability
Patched
A heap buffer overflow vulnerability has been identified in OpenSSL versions 3.6, 3.5, 3.4, 3.3, and 3.0. This issue arises when an excessively large OCTET STRING value is converted to a hexadecimal string, leading to a potential crash or, in some cases, execution of attacker-controlled code. The vulnerability is specific to 32-bit platforms.
Impact
Exploitation of this vulnerability can cause a heap buffer overflow, which may lead to a crash or potentially allow for execution of attacker-controlled code.
Reproduction
To reproduce this vulnerability, supply a crafted X.509 certificate containing an excessively large OCTET STRING value in extensions such as the Subject Key Identifier or Authority Key Identifier. When these extensions are converted to hexadecimal, the size of the buffer required for the conversion is calculated based on the input length. On 32-bit platforms, this calculation can overflow, resulting in a heap buffer overflow.
Remediation
Users of OpenSSL 3.6 should upgrade to OpenSSL 3.6.2, those on OpenSSL 3.5 should upgrade to OpenSSL 3.5.6, users on OpenSSL 3.4 should upgrade to OpenSSL 3.4.5, and users on OpenSSL 3.3 should upgrade to OpenSSL 3.3.7.
Added: Apr 8, 2026, 12:24 AM
Updated: Apr 8, 2026, 12:24 AM
Vulnerability Rating
Custom Algorithm
spread
8.6impact
7.5exploitability
7.4remediation
7.7relevance
5.4threat
4.8urgency
2.9incentive
4.2Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.