VDB
JLSEC-2026-255
JLSEC-2026-255
PUBLISHED
CVSS 6.099999904632568 MEDIUM
Issue summary: PBMAC1 parameters in PKCS#12 files are missing validation which can trigger a...
Risk Scores
CVSS v3.1
6.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSL_jll | 3.5.0+0, 3.5.0+0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-hpc7-gcqm-58fv url
- https://github.com/metadust/CVE-2025-11187 url
- https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206 url
- https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8 url
- https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e url
- https://nvd.nist.gov/vuln/detail/CVE-2025-11187 url
- https://openssl-library.org/news/secadv/20260127.txt url