CVE-2025-69419 — Out-of-bounds Write in Openssl

CWE-787 — Out-of-bounds Write CWE-131 — Incorrect Calculation of Buffer Size15 documents10 sources

Severity

7.4HIGHNVD

OSV6.1

EPSS

0.1%

top 80.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl

Timeline

PublishedJan 27

Description

Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file with a BMPString (UTF-16BE) friendly name containing non-ASCII BMP code point can trigger a one byte write before the allocated buffer. Impact summary: The out-of-bounds write can cause a memory corruption which can have various consequences including a Denial of Service. The OPENSSL_uni2utf8() function performs a two-pass conversion of a PKCS#12 BMPString (UTF-16BE) to UTF-8. In the second pass, wh…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 2.2 | Impact: 5.2

Affected Packages5 packages

▶CVEListV5openssl/openssl3.6.0 — 3.6.1+5

▶NVDopenssl/openssl1.1.1 — 1.1.1ze+5

▶Alpineopenssl/openssl< 3.0.19-r0+4

▶Debianopenssl/openssl< 1.1.1w-0+deb11u5+3

▶Ubuntuopenssl/openssl< 3.0.2-0ubuntu1.21+9

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2025-69419: Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file with a BMPString (UTF-16BE) friendly name containing n↗2026-01-27

▶

OSV

CVE-2025-69419: Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file with a BMPString (UTF-16BE) friendly name containing n↗2026-01-27

▶

GHSA

GHSA-x77r-97gw-wh89: Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file with a BMPString (UTF-16BE) friendly name containing n↗2026-01-27

▶

CVEList

Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion↗2026-01-27

▶

OSV

openssl, openssl1.0 vulnerabilities↗2026-01-27

▶

📋Vendor Advisories

Ubuntu

OpenSSL vulnerabilities↗2026-01-27

▶

Red Hat

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing↗2026-01-27

▶

BSD

FreeBSD-SA-26:01.openssl: Multiple vulnerabilities in OpenSSL↗2026-01-27

▶

Ubuntu

OpenSSL vulnerabilities↗2026-01-27

▶

Debian

CVE-2025-69419: openssl - Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously craft...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-69419 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

💬Community

Bugzilla

CVE-2025-69419 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing↗2026-01-16

▶