CVE-2026-7383

🗓️ 09 Jun 2026 16:03:15Reported by opensslType

Possible heap overflow in ASN1 multibyte string conversion due to signed integer overflow.

Reporter	Title	Published	Views	Family All 10
Cvelist	CVE-2026-7383 Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion	9 Jun 202616:03	–	cvelist
Debian CVE	CVE-2026-7383	9 Jun 202616:03	–	debiancve
EUVD	EUVD-2026-35474	9 Jun 202618:31	–	euvd
NVD	CVE-2026-7383	9 Jun 202617:17	–	nvd
OSV	DEBIAN-CVE-2026-7383	9 Jun 202619:47	–	osv
OSV	UBUNTU-CVE-2026-7383	9 Jun 202600:00	–	osv
Positive Technologies	PT-2026-47855	9 Jun 202600:00	–	ptsecurity
Ubuntu	USN-8414-1: OpenSSL vulnerabilities	9 Jun 202617:14	–	ubuntu
Ubuntu	USN-8414-2: OpenSSL vulnerabilities	9 Jun 202618:29	–	ubuntu
Vulnrichment	CVE-2026-7383 Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion	9 Jun 202616:03	–	vulnrichment

Vulners

Node

openssl opensslRange4.0.0–4.0.1

openssl opensslRange3.6.0–3.6.3

openssl opensslRange3.5.0–3.5.7

openssl opensslRange3.4.0–3.4.6

openssl opensslRange3.0.0–3.0.21

openssl opensslRange1.1.1–1.1.1zh

openssl opensslRange1.0.2–1.0.2zq

[
  {
    "defaultStatus": "unaffected",
    "product": "OpenSSL",
    "vendor": "OpenSSL",
    "versions": [
      {
        "lessThan": "4.0.1",
        "status": "affected",
        "version": "4.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.6.3",
        "status": "affected",
        "version": "3.6.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.5.7",
        "status": "affected",
        "version": "3.5.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.4.6",
        "status": "affected",
        "version": "3.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.0.21",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "1.1.1zh",
        "status": "affected",
        "version": "1.1.1",
        "versionType": "custom"
      },
      {
        "lessThan": "1.0.2zq",
        "status": "affected",
        "version": "1.0.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/openssl/security/commit/d32350ae8ef7426718f5aa9e383d4b51398ee255
github	www.github.com/openssl/security/commit/c332adaced43bcbb85f97410597e951c11ec3083
github	www.github.com/openssl/security/commit/80c15faaf78042bbb8654a0e234c50c381732f74
github	www.github.com/openssl/security/commit/bd17511070fb39a67bfa19682affb765e706a974
github	www.github.com/openssl/security/commit/4f8d2bddaa2c8e06f9c33390ee1717059a6e4be6
openssl-library	www.openssl-library.org/news/secadv/20260609.txt

09 Jun 2026 19:38Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.18.1

SSVC

CWE-787