Exposure of OpenSSL
Web server extensions169
exposure score
71,969
sites use
0
exploited
8
critical
CVEs
152 resultsCVE-2024-13176MEDIUMTiming side-channel in ECDSA signature computationEPSS 0.6%CVE-2026-42766MEDIUMPossible NULL Dereference in Password-Based CMS DecryptionEPSS 0.6%CVE-2016-7056MEDIUMA timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 privaEPSS 0.6%CVE-2023-2975MEDIUMAES-SIV implementation ignores empty associated data entriesEPSS 0.5%CVE-2024-2467MEDIUMPerl-crypt-openssl-rsa: side-channel attack in pkcs#1 v1.5 padding mode (marvin attack)EPSS 0.5%CVE-2025-11187MEDIUMImproper validation of PBMAC1 parameters in PKCS#12 MAC verificationEPSS 0.5%CVE-2026-34180HIGHHeap Buffer Over-read in ASN.1 Content ParsingEPSS 0.5%CVE-2026-34183HIGHUnbounded Memory Growth in the QUIC PATH_CHALLENGE HandlerEPSS 0.5%CVE-2024-31074HIGHObservable timing discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via neEPSS 0.5%CVE-2026-22796MEDIUMASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() functionEPSS 0.5%CVE-2026-27459HIGHpyOpenSSL DTLS cookie callback buffer overflowEPSS 0.5%CVE-2024-33617HIGHInsufficient control flow management in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosureEPSS 0.4%CVE-2026-8721CRITICALCrypt::OpenSSL::PKCS12 versions through 1.94 for Perl truncates passwords with embedded NULLsEPSS 0.4%CVE-2025-69419HIGHOut of bounds write in PKCS12_get_friendlyname() UTF-8 conversionEPSS 0.4%CVE-2026-2673MEDIUMOpenSSL TLS 1.3 server may choose unexpected key agreement groupEPSS 0.4%CVE-2025-3416LOWRust-openssl: rust-openssl use-after-free in `md::fetch` and `cipher::fetch`EPSS 0.4%CVE-2024-28885HIGHObservable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network aEPSS 0.4%CVE-2026-42765HIGHNULL Dereference in Certificate Verification with OCSP CheckingEPSS 0.4%CVE-2024-3296MEDIUMRust-openssl: timing based side-channel can lead to a bleichenbacher style attackEPSS 0.4%CVE-2026-41898HIGHrust-openssl: Unchecked callback-returned length in PSK and cookie generate trampolines can cause OpenSSL to leak adjacent memory to the network peerEPSS 0.4%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →