CVE-2026-28386 — Out-of-bounds Read in Openssl

CWE-125 — Out-of-bounds Read CWE-805 — Buffer Access with Incorrect Length Value7 documents7 sources

Severity

9.1CRITICALNVD

EPSS

0.1%

top 79.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl

Timeline

PublishedApr 7

Latest updateApr 8

Description

Issue summary: Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and VAES support can trigger an out-of-bounds read of up to 15 bytes when processing partial cipher blocks. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application if the input buffer ends at a memory page boundary and the following page is unmapped. There is no information disclosure as the over-read bytes are not written to output. The vulnerab…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

▶CVEListV5openssl/openssl3.6.0 — 3.6.2

▶debiandebian/openssl

🔴Vulnerability Details

GHSA

GHSA-q457-vx59-3fqg: Issue summary: Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and VAES support can trigger an out-of-bounds read of up↗2026-04-08

▶

OSV

CVE-2026-28386: Issue summary: Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and VAES support can trigger an out-of-bounds read of up↗2026-04-07

▶

📋Vendor Advisories

Red Hat

openssl: openssl: Denial of Service due to out-of-bounds read in AES-CFB128↗2026-04-07

▶

Debian

CVE-2026-28386: openssl - Issue summary: Applications using AES-CFB128 encryption or decryption on systems...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-28386 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

💬Community

Bugzilla

CVE-2026-28386 openssl: openssl: Denial of Service due to out-of-bounds read in AES-CFB128↗2026-03-25

▶