CVE-2026-28387 | OpenSSL up to 3.6.1 DANE Client Code use after free

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability categorized as critical has been discovered in OpenSSL up to 3.6.1. This affects an unknown function of the component DANE Client Code. The manipulation results in use after free.

This vulnerability is reported as CVE-2026-28387. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-28387 | OpenSSL up to 3.6.1 DANE Client Code use after free

Post correlati

CVE-2025-1371 | GNU elfutils 0.192 eu-read readelf.c handle_dynamic_symtab null pointer dereference (Bug 32655)

CVE-2025-45847 | ALFA AIP-W512 3.2.2.2.3 formWsc targetAPMac stack-based overflow

CVE-2024-40782 | Apple tvOS Web use after free

CVE-2024-11451 | Zooom Plugin up to 1.1.0 on WordPress cross site scripting