Severity: Unknown
Affected Package: openssl
Summary: stack buffer overflow in CMS AuthEnvelopedData parsing
Parsing a CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow, which may lead to a crash (Denial of Service) or potentially remote code execution. Severity: High (OpenSSL).
No specific recommendations provided.
Aliases: CVE-2025-15467
Published: June 11, 2026
Last Modified: June 11, 2026