VDB
JLSEC-2026-233
JLSEC-2026-233
PUBLISHED
CVSS 7.5 HIGH
openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSL_jll | 0, 0 |
| Julia | Openresty_jll | 0, 0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=8818064ce3c3c0f1b740a5aaba2a987e75bfbafd url
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9816136fe31d92ace4037d5da5257f763aeeb4eb url
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c3829dd8825c654652201e16f8a0a0c46ee3f344 url
- https://github.com/advisories/GHSA-r7jw-wp68-3xch url
- https://nvd.nist.gov/vuln/detail/CVE-2023-0215 url
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0003 url
- https://rustsec.org/advisories/RUSTSEC-2023-0009.html url
- https://security.gentoo.org/glsa/202402-08 url
- https://security.netapp.com/advisory/ntap-20230427-0007 url
- https://security.netapp.com/advisory/ntap-20230427-0007/ url
- https://security.netapp.com/advisory/ntap-20230427-0009 url
- https://security.netapp.com/advisory/ntap-20230427-0009/ url
- https://security.netapp.com/advisory/ntap-20240621-0006 url
- https://security.netapp.com/advisory/ntap-20240621-0006/ url
- https://www.openssl.org/news/secadv/20230207.txt url