CVE-2025-9230

🗓️ 30 Sep 2025 13:17:00Reported by opensslType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 51 Views

Out-of-bounds read and write in RFC 3211 KEK Unwrap may cause crash or memory corruption during password-based decryption.

Reporter	Title	Published	Views	Family All 460
FreeBSD	OpenSSL -- multiple vulnerabilities	30 Sep 202500:00	–	freebsd
FreeBSD	LibreSSL -- overwrite and -read vulnerability	1 Oct 202500:00	–	freebsd
IBM Security Bulletins	Security Bulletin: Muliple security vulnerabilities found in IBM CICS TX Standard.	22 Apr 202614:23	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Operator package issues	17 Dec 202514:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM MQ Operator and Queue manager container images	10 Dec 202516:39	–	ibm
IBM Security Bulletins	Security Bulletin: TSSC/IMC addresses multiple security vulnerabilities.	25 Feb 202617:18	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in openssl library (CVE-2025-9230) affects Power HMC.	31 Mar 202615:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in OpenSSL affects IBM Netezza Appliance	16 Apr 202611:32	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities found in the Red Hat Universal Minimal Base Image shipped with CICS Transaction Gateway for Multiplatforms	5 Mar 202613:53	–	ibm
IBM Security Bulletins	Security Bulletin: Enumeration of users, compromised data confidentiality and integrity, and other vulnerabilities might affect IBM Storage Defender - Resiliency Service	23 Mar 202616:22	–	ibm

Vulners

Node

openssl opensslRange3.5.0–3.5.4

openssl opensslRange3.4.0–3.4.3

openssl opensslRange3.3.0–3.3.5

openssl opensslRange3.2.0–3.2.6

openssl opensslRange3.0.0–3.0.18

openssl opensslRange1.1.1–1.1.1zd

openssl opensslRange1.0.2–1.0.2zm

[
  {
    "defaultStatus": "unaffected",
    "product": "OpenSSL",
    "vendor": "OpenSSL",
    "versions": [
      {
        "lessThan": "3.5.4",
        "status": "affected",
        "version": "3.5.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.4.3",
        "status": "affected",
        "version": "3.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.3.5",
        "status": "affected",
        "version": "3.3.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.2.6",
        "status": "affected",
        "version": "3.2.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.0.18",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "1.1.1zd",
        "status": "affected",
        "version": "1.1.1",
        "versionType": "custom"
      },
      {
        "lessThan": "1.0.2zm",
        "status": "affected",
        "version": "1.0.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
openssl-library	www.openssl-library.org/news/secadv/20250930.txt
github	www.github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280
github	www.github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3
github	www.github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd
github	www.github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482
github	www.github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def
github	www.github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba
github	www.github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-253495.html
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-089022.html

02 Jun 2026 14:16Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.5

EPSS0.00037

SSVC