High

OpenSSL PKCS#12 PBMAC1 short HMAC key acceptance allows certificate and private key forgery

IdentifiersCVE-2026-34181CWE-20

CVE-2026-34181 is a low-severity input validation flaw in OpenSSL PKCS#12 file processing. When processing PKCS#12 files that use the Password-Based Message Authentication Code 1 (PBMAC1) integrity mechanism, OpenSSL fails to sufficiently validate the PBMAC1 parameters and accepts files specifying an HMAC key of only one byte. As a result, an attacker can craft an unencrypted PKCS#12 file authenticated with PBMAC1 such that integrity verification succeeds with a 1 in 256 probability, causing the receiving service to accept attacker-controlled certificate and private key material as valid. According to the provided advisory context, affected versions are OpenSSL 4.0.0 before 4.0.1, 3.6.0 before 3.6.3, 3.5.0 before 3.5.7, and 3.4.0 before 3.4.6. The vulnerable code is outside the OpenSSL FIPS module boundary, so FIPS modules are not affected.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can cause a service that imports or reads PKCS#12 files to accept a forged certificate and private key controlled by the attacker. This enables identity impersonation in workflows that rely on password-authenticated PKCS#12 bundles for certificate/key provisioning or import. The advisory states acceptance occurs with a 1 in 256 probability per crafted file, so repeated attempts may allow practical forgery against exposed services. The issue is described as low severity and does not affect OpenSSL FIPS modules.

Mitigation

If you can’t patch tonight, do this now.

No specific vendor workaround is provided in the supplied content. Practical exposure can be reduced by refusing unencrypted PKCS#12 files, disallowing or filtering PBMAC1-based PKCS#12 inputs where possible, enforcing stronger validation of PKCS#12 integrity parameters before import, and limiting acceptance of PKCS#12 bundles to trusted channels or authenticated users. Systems using OpenSSL FIPS modules are not affected by this specific issue.

Remediation

Patch, then assume compromise.

Upgrade OpenSSL to a fixed release: 4.0.1 or later, 3.6.3 or later, 3.5.7 or later, or 3.4.6 or later, as applicable to the deployed branch. Where OpenSSL is consumed through an operating system or vendor package, apply the corresponding downstream security update from the platform maintainer. Alpine 3.24.1 and other downstream advisories referenced in the content include fixes for this issue.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

FreebsdFreebsdapplication

OpenSSL Software FoundationOpensslapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

7 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

7 SOURCESView more in app

alpinelinuxNews

Jun 13, 2026

Alpine 3.24.1 released | Alpine Linux

An OpenSSL vulnerability addressed in Alpine Linux 3.24.1 as part of the June 9, 2026 advisory.

openssl libraryNews

Jun 9, 2026

Vulnerabilities 4.0 | OpenSSL Library

A low-severity OpenSSL PKCS#12 input validation flaw where PBMAC1 files with very short HMAC keys may be accepted, enabling certificate and private key forgery with limited probability.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity1

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES

MITRE CVE

cve.org · CVE-2026-34181

NVD

nvd.nist.gov/vuln/detail/CVE-2026-34181

MITRE CWE · CWE-20

cwe.mitre.org

Patch

github.com/openssl/openssl/commit/0300eb9ddce7a0895bf301a4b0c03a9da2313a0f

Patch

github.com/openssl/openssl/commit/79eb76a937e474bb7610a0a3dc57131dc8dc6610

Patch

github.com/openssl/openssl/commit/85dcbb3abaa4878af5c8fbbe11bce708fcf984a7

Patch

github.com/openssl/openssl/commit/ec36f2417c4ddd8cabce4b4a60a3d7a7365f2d81

Vendor Advisory

openssl-library.org/news/secadv/20260609.txt