CVE-2026-42769

MEDIUM EPSS 17.5%
Published Jun 9, 20262w ago · Modified Jun 17, 20261w ago
5.3 CVSS 3.1
Medium
Find Similar
Published Jun 9, 2026 2w ago
Last Modified Jun 17, 2026 1w ago

Description

Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol (CMP) message response rendered the certificate validation ineffectual, which could lead to escalation of credentials from the Registration Authority (RA) level to the root Certification Authority (root CA) level. Impact Summary: The Registration Autority could replace the root CA certificate for the CMP clients with an arbitrary root CA certificate. One of the parts of the Certificate Management Protocol (CMP), specified in RFC 9810, is Root Certification Authority (root CA) key Rollover, which is sent by the server in a message with type 'id-it-rootCaKeyUpdate'. As part of these messages, 'newWithOld' certificate, the new root CA certificate signed with the old root CA key, is provided, and verifying its signature is crucial for transferring the trust from the old CA key to the new one. The 'id-it-rootCaKeyUpdate' messages are expected to be processed with OSSL_CMP_get1_rootCaKeyUpdate(), that is expected to verify the 'newWithOld' certificate. A typo in the certificate chain building code led to adding an incorrect certificate ('newWithOld' instead of 'oldRoot') to the certificate chain, rendering the certificate verification process ineffectual (only the issuer name and the algorithm OIDs were verified by other parts of the verification code). An attacker who already has credentials that satisfy the CMP message protection checks can generate a new key pair and use a crafted self-signed certificate in its 'id-it-rootCaKeyUpdate' CMP messages which affected CMP clients would accept as a new trust anchor. Significant preconditions for the attack (having valid RA-level credentials) are the reason the issue was assigned Low severity. The FIPS modules are not affected by this issue, as the affected code is outside the OpenSSL FIPS module boundary.

CVSS Details

Base Score
5.3
Exploitability
1.6
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector Network
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability None

Threat Intelligence

EPSS Exploit Probability
17.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-295

Affected Products 4

VendorProductVersionRange
opensslopenssl*≥3.4.0  –  <3.4.6
opensslopenssl*≥3.5.0  –  <3.5.7
opensslopenssl*≥3.6.0  –  <3.6.3
opensslopenssl4.0.0any

References 5

  • github.com https://github.com/openssl/openssl/commit/54d0989997e5fc26057009a9782c3441ce3842fb
    Patch
  • github.com https://github.com/openssl/openssl/commit/777b363b16fcf2153bb3ded39dc3838713667c44
    Patch
  • github.com https://github.com/openssl/openssl/commit/d35cd473a271bf3ce7bf3d32af53217fb83ae92c
    Patch
  • github.com https://github.com/openssl/openssl/commit/d531f21c0fe99067a66fc0ff1161ef127f9cd70b
    Patch
  • openssl-library.org https://openssl-library.org/news/secadv/20260609.txt
    Vendor Advisory

Remediation

  • github.com https://github.com/openssl/openssl/commit/54d0989997e5fc26057009a9782c3441ce3842fb
    Patch
  • github.com https://github.com/openssl/openssl/commit/777b363b16fcf2153bb3ded39dc3838713667c44
    Patch
  • github.com https://github.com/openssl/openssl/commit/d35cd473a271bf3ce7bf3d32af53217fb83ae92c
    Patch
  • github.com https://github.com/openssl/openssl/commit/d531f21c0fe99067a66fc0ff1161ef127f9cd70b
    Patch