Back to overview

CVE-2026-45784

MEDIUM
5.1
CVSS 4.0
Description
rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.50 until 0.10.80, CipherCtxRef::cipher_update_inplace in openssl/src/cipher_ctx.rs incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVP_aes_{128,192,256}_wrap_pad. For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller's buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This issue is fixed in version 0.10.80.

Metadata

CVE ID
CVE-2026-45784
State
PUBLISHED
Assigner
GitHub_M
Reserved
2026-05-13 07:45 UTC
Published
2026-07-17 20:26 UTC
Last updated
2026-07-17 20:26 UTC
Primary CWE
CWE-131
CWE-131: Incorrect Calculation of Buffer Size
Vendor / Product
rust-openssl / rust-openssl
Sources
cve.org  ·  NVD

Severity & Metrics

5.1 MEDIUM CVSS 4.0
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
Affected products (1)
VendorProductPlatformVersions
rust-openssl rust-openssl >= 0.10.50, < 0.10.80
Weakness (CWE)
CWESourceDescription
CWE-131 cna CWE-131: Incorrect Calculation of Buffer Size
CWE-787 cna CWE-787: Out-of-bounds Write
CVSS scores (1)
ScoreSeverityVersionSourceVector
5.1 MEDIUM 4.0 cna CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
References (4)
Back to overview