VDB
JLSEC-2026-274
JLSEC-2026-274
PUBLISHED
CVSS 7.5 HIGH
Issue summary: During processing of a crafted CMS EnvelopedData message with...
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSL_jll | 0, 3.5.0+0, 0 |
| Julia | AppBundler | 1.0.0, 1.0.0 |
| Julia | Openresty_jll | 0, 0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-7x88-9hgc-69gf url
- https://github.com/openssl/openssl/commit/16cea4188e0ea567deb4f93f85902247e67384f5 url
- https://github.com/openssl/openssl/commit/785cbf7ea3b5a6f5adf0c1ccb92b79d89c35c616 url
- https://github.com/openssl/openssl/commit/7b5274e812400cacb6f3be4c2df5340923fa807f url
- https://github.com/openssl/openssl/commit/c6725634e089eb2b634b10ede33944be7248172a url
- https://github.com/openssl/openssl/commit/f80f83bc5fd036bc47d773e8b15a001e2b4ce686 url
- https://nvd.nist.gov/vuln/detail/CVE-2026-28389 url
- https://openssl-library.org/news/secadv/20260407.txt url