VDB
JLSEC-2026-277
JLSEC-2026-277
PUBLISHED
CVSS 7.5 HIGH
Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key...
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSL_jll | 3.0.8+0, 3.5.0+0, 3.0.8+0 |
| Julia | AppBundler | 1.0.0, 1.0.0 |
| Julia | Openresty_jll | 1.27.1+0, 1.27.1+0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-vgxx-5xj5-q97x url
- https://github.com/openssl/openssl/commit/001e01db3e996e13ffc72386fe79d03a6683b5ac url
- https://github.com/openssl/openssl/commit/abd8b2eec7e3f3fda60ecfb68498b246b52af482 url
- https://github.com/openssl/openssl/commit/b922e24e5b23ffb9cb9e14cadff23d91e9f7e406 url
- https://github.com/openssl/openssl/commit/d5f8e71cd0a54e961d0c3b174348f8308486f790 url
- https://github.com/openssl/openssl/commit/eed200f58cd8645ed77e46b7e9f764e284df379e url
- https://nvd.nist.gov/vuln/detail/CVE-2026-31790 url
- https://openssl-library.org/news/secadv/20260407.txt url