CVE security advisories and vulnerability history for openssl-src by crates.io.
Last updated
crates.io openssl-src has 25 published CVE records since 2020, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs is 7.1.
This page aggregates every publicly disclosed vulnerability (CVE) affecting crates.io openssl-src, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
How the CVSS severity of crates.io openssl-src's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
10 additional CVEs have no CVSS severity score.
In CISA’s Known Exploited Vulnerabilities catalog
0
None of crates.io openssl-src's CVEs are currently listed in CISA's KEV catalog.
Public exploits
4
4 of crates.io openssl-src's CVEs have a known public exploit available.
Browse every crates.io openssl-src version named in a CVE, then pick one to see only the CVEs that affect it.
25 CVEs
The CWE weakness categories most often found in crates.io openssl-src CVEs. Follow any weakness for its full explanation.
How many crates.io openssl-src CVEs were published each year.
Browse vulnerabilities for other products by crates.io.
Common questions about crates.io openssl-src vulnerabilities.
crates.io openssl-src has 25 published CVE records since 2020.
None of crates.io openssl-src's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Yes — 4 of crates.io openssl-src's CVEs have a known public exploit.
14 distinct crates.io openssl-src versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
crates.io openssl-src's CVEs most often map to these CWE weakness types: CWE-476 (NULL Pointer Dereference), CWE-125 (Out-of-bounds Read), CWE-203 (Observable Discrepancy), CWE-295 (Improper Certificate Validation).
The average CVSS base score across crates.io openssl-src's scored CVEs is 7.1.
Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.
Monitor new crates.io openssl-src vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.
