Critical

Heap Use-After-Free in OpenSSL PKCS7_verify()

IdentifiersCVE-2026-45447CWE-416· Use After Free

CVE-2026-45447 is a high-severity heap use-after-free in OpenSSL's PKCS#7 signature verification path, specifically in PKCS7_verify(). When an application processes a specially crafted PKCS#7 or S/MIME signed message whose SignedData digestAlgorithms field is encoded as an empty ASN.1 SET, OpenSSL may incorrectly free a caller-owned BIO passed into PKCS7_verify(). If the calling application subsequently continues to use that BIO, commonly by later invoking BIO_free() on it, a use-after-free condition occurs. The flaw affects applications using OpenSSL PKCS#7 APIs to process signed PKCS#7 or S/MIME content; applications using the CMS APIs for equivalent processing are not affected. Reported affected versions are OpenSSL 4.0.0 before 4.0.1, 3.6.0 before 3.6.3, 3.5.0 before 3.5.7, 3.4.0 before 3.4.6, 3.0.0 before 3.0.21, 1.1.1 before 1.1.1zh, and 1.0.2 before 1.0.2zq.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can cause process termination, heap corruption, and in some application contexts potentially remote code execution. The immediate effect is memory safety violation after PKCS7_verify() frees a BIO still assumed to be owned and valid by the caller. In the common case, the application later frees or otherwise accesses the stale BIO pointer, leading to a crash or allocator-state corruption. Depending on heap layout, allocator behavior, and subsequent BIO usage patterns, the corruption may be exploitable beyond denial of service.

Mitigation

If you can’t patch tonight, do this now.

If immediate patching is not possible, reduce exposure by avoiding or disabling processing of untrusted PKCS#7 or S/MIME signed messages through the OpenSSL PKCS#7 APIs. Prefer CMS APIs for this processing path where feasible, as the advisory states CMS APIs are not affected. Additional temporary risk reduction includes filtering or isolating workflows that accept externally supplied signed email or PKCS#7 objects and running affected services with hardening measures that limit impact of crashes or memory corruption. No complete workaround is documented in the provided advisories.

Remediation

Patch, then assume compromise.

Upgrade OpenSSL to a fixed release: 4.0.1 or later, 3.6.3 or later, 3.5.7 or later, 3.4.6 or later, 3.0.21 or later, 1.1.1zh or later, or 1.0.2zq or later, as applicable to the deployed branch. Downstream consumers should also apply vendor-supplied updates such as the relevant Debian or FreeBSD security updates where OpenSSL is bundled or redistributed. Ensure applications linked against vulnerable OpenSSL versions are rebuilt/redeployed as needed and restart affected services after patching.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

FreebsdFreebsdapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

24 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

24 SOURCESView more in app

openssl libraryNews

Jun 9, 2026

Vulnerabilities 4.0 | OpenSSL Library

A high-severity OpenSSL use-after-free in PKCS7_verify() triggered by crafted PKCS#7 or S/MIME signed messages, potentially causing crashes, heap corruption, or remote code execution.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity21

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES

MITRE CVE

cve.org · CVE-2026-45447

NVD

nvd.nist.gov/vuln/detail/CVE-2026-45447

MITRE CWE · CWE-416

Use After Free

github.com

github.com/openssl/security/commit/3aad5eb7af4de4ee0633c30a8541a54d9bbde63c

github.com

github.com/openssl/security/commit/7d4a980c62258c5910cc883936e0c8dbab4d75a8

github.com

github.com/openssl/security/commit/9dfd688ad2290fc5075cacbc9bf0c9a93eefed54

github.com

github.com/openssl/security/commit/a541ae8bfe849a30cc885e8780715c0f488e496c

github.com

github.com/openssl/security/commit/c505d7559da5d5f9f2c3913c6883a5562ce7273e

openssl-library.org

openssl-library.org/news/secadv/20260609.txt