Description
Issue summary: A malicious server can exploit TLS OCSP stapling by delivering
a crafted response through the status_request extension, triggering a
double-free in the client's certificate verification path.

Impact summary: Successful exploitation allows an attacker to corrupt heap
memory via a double-free, potentially leading to a Denial of Service or
possibly an attacker controlled code execution or other undefined behavior.

If OCSP stapling is enabled and the TLS client connects to a malicious server,
a crafted OCSP stapled response can trigger a double free in the TLS client
when the stapled response is checked.

The OCSP stapling is not enabled by default. Reliable code execution
through a double-free is technically complex and highly environment-dependent
but the Denial of Service impact is straightforward to achieve, warranting
Moderate severity.

No FIPS modules are affected by this issue as the affected code is outside
the OpenSSL FIPS module boundary.
Published: 2026-06-09
Score: 5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A malicious TLS server can send a crafted OCSP stapled response via the status_request extension to a client that has OCSP stapling enabled. The OpenSSL client library then performs the certificate verification and, due to a double‑free bug, releases memory that is still in use. The resulting heap corruption can lead to a service disruption or, if successfully exploited, to arbitrary code execution on the client. The flaw is a classic CWE‑415 double‑free vulnerability.

Affected Systems

The vulnerability affects the OpenSSL library. No specific version range is provided, and OCSP stapling is not enabled by default. FIPS modules are not affected, as the code that misbehaves lies outside the FIPS module boundary.

Risk and Exploitability

The risk level is moderate because a denial‑of‑service outcome is straightforward to achieve, while reliable code execution requires a complex combination of conditions. The CVSS score for this vulnerability is 5, indicating moderate severity. The EPSS score is < 1% (approximately 0.00017), and the vulnerability is not listed in the CISA KEV catalog. Exploitation requires the attacker to control the TLS server and send a malformed stapled response to a client that has OCSP stapling enabled. The attack surface is therefore limited to TLS clients that have enabled this feature, and the attacker must first be able to establish a TLS connection to the client.

Generated by OpenCVE AI on June 10, 2026 at 23:33 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Disable OCSP stapling in client configurations unless the feature is required.
  • Update the OpenSSL library to the latest stable release as soon as an official patch becomes available.
  • Monitor TLS traffic for anomalous OCSP stapled responses and block traffic from unknown or misbehaving servers.

Generated by OpenCVE AI on June 10, 2026 at 23:33 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 15 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:4.0.0:-:*:*:*:*:*:*

Wed, 10 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L'}

Wed, 10 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 10 Jun 2026 08:30:00 +0000

Type Values Removed Values Added
References

Wed, 10 Jun 2026 08:15:00 +0000

Type Values Removed Values Added
References

Tue, 09 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Openssl
Openssl openssl
Vendors & Products Openssl
Openssl openssl

Tue, 09 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Description Issue summary: A malicious server can exploit TLS OCSP stapling by delivering a crafted response through the status_request extension, triggering a double-free in the client's certificate verification path. Impact summary: Successful exploitation allows an attacker to corrupt heap memory via a double-free, potentially leading to a Denial of Service or possibly an attacker controlled code execution or other undefined behavior. If OCSP stapling is enabled and the TLS client connects to a malicious server, a crafted OCSP stapled response can trigger a double free in the TLS client when the stapled response is checked. The OCSP stapling is not enabled by default. Reliable code execution through a double-free is technically complex and highly environment-dependent but the Denial of Service impact is straightforward to achieve, warranting Moderate severity. No FIPS modules are affected by this issue as the affected code is outside the OpenSSL FIPS module boundary.
Title Double-free When Checking OCSP Stapled Response
Weaknesses CWE-415
References

Subscriptions

Openssl Openssl
cve-icon MITRE

Status: PUBLISHED

Assigner: openssl

Published:

Updated: 2026-06-10T20:02:41.587Z

Reserved: 2026-04-01T17:36:26.323Z

Link: CVE-2026-35188

cve-icon Vulnrichment

Updated: 2026-06-10T10:33:35.427Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T17:17:05.437

Modified: 2026-06-15T18:12:24.707

Link: CVE-2026-35188

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T23:45:44Z

Weaknesses