OpenSSL
Security Scorecard
Score
23F
Total CVEs
71
Patch Rate
1%
1 patched
Avg Response
-
days to patch
Critical Gaps
4
exploitable, no detection
Severity Breakdown
Critical1
High3
Medium4
Low0
Patch Status
Patched1 (1%)
Partial/Workaround2 (3%)
Unpatched68 (96%)
CVEs (71)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-22796 | PKCS#7 Signature Verification Denial of Service | Medium | 5.3 | - | Patched |
| CVE-2025-69420 | OpenSSL ASN1 Type Confusion Vulnerability | High | 7.5 | 1d | Unpatched |
| CVE-2025-11187 | PBMAC1 Parameter Validation Bypass | Medium | 6.1 | - | Workaround |
| CVE-2025-15467 | CVE-2025-15467 - OpenSSL Stack Buffer Overflow | Critical | 9.8 | - | Workaround |
| CVE-2025-15468 | SSL_CIPHER_find NULL Dereference Vulnerability | Medium | 5.9 | 2d | Unpatched |
| CVE-2025-69419 | PKCS12 Buffer Overflow Vulnerability | High | 7.4 | 2d | Unpatched |
| CVE-2025-9230 | - | High | 7.5 | 78d | Unpatched |
| CVE-2025-9232 | - | Medium | 5.9 | 78d | Unpatched |
| CVE-2017-3994 | - | N/A | - | 2837d | Unpatched |
| CVE-2017-4111 | - | N/A | - | 2837d | Unpatched |