OpenSSL Multiple Vulnerabilities
Release Date: 11 Jun 2026
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in OpenSSL. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, remote code execution, denial of service condition, security restriction bypass and sensitive information disclosure on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
- Security Restriction Bypass
- Spoofing
System / Technologies affected
- OpenSSL version 1.0.2
- OpenSSL version 1.1.1
- OpenSSL version 3.0
- OpenSSL version 3.4
- OpenSSL version 3.5
- OpenSSL version 3.6
- OpenSSL version 4.0
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- For version 1.0.2, upgrade to version 1.0.2zq
- For version 1.1.1, upgrade to version 1.1.1zh
- For version 3.0, upgrade to version 3.0.21
- For version 3.4, upgrade to version 3.4.6
- For version 3.5, upgrade to version 3.5.7
- For version 3.6, upgrade to version 3.6.3
- For version 4.0, upgrade to version 4.0.1
Vulnerability Identifier
- CVE-2026-7383
- CVE-2026-9076
- CVE-2026-34180
- CVE-2026-34181
- CVE-2026-34182
- CVE-2026-34183
- CVE-2026-35188
- CVE-2026-42764
- CVE-2026-42765
- CVE-2026-42766
- CVE-2026-42767
- CVE-2026-42768
- CVE-2026-42769
- CVE-2026-42770
- CVE-2026-42771
- CVE-2026-45445
- CVE-2026-45446
- CVE-2026-45447
沒有留言:
發佈留言