Vulnerability intelligence

CVE-2026-45447

Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification. Impact summary: A use-after-free may result in process crashes, heap corruption, or potentially remote code execution. When processing a PKCS#7 or S/MIME signed message, if the SignedData digestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may incorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent use of the BIO by the calling application results in a use-after-free condition. In the common case this occurs when the application later calls BIO_free() on the BIO originally passed to PKCS7_verify(). Depending on allocator behavior and application-specific BIO usage patterns, this may result in a crash or other memory corruption. In some application contexts this may potentially be exploitable for remote code execution.

CVSS Score

9.8

Critical

EPSS — Exploit Probability

0.1%

Riskier than 30% of all CVEs

Exploitation

Not in CISA KEV

No federal exploitation record

Remediation

Patch available

Vendor fix published

NVD entry Vendor patch PoC / advisory

2 articles across 2 outlets · first covered Jun 9, 2026 · latest Jun 10, 2026

Coverage timeline

OpenSSL Security Patches Fix Remote Code Execution Risk
securityonline.info · Jun 10, 2026
OpenSSL patches critical RCE bug CVE-2026-45447 uncovered by AI
www.securityweek.com · Jun 9, 2026