CVE-2026-7383
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2026-06-09

Last updated on: 2026-06-09

Assigner: OpenSSL Software Foundation

Description
Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap buffer overflow. Impact summary: A heap buffer overflow may lead to a crash or possibly attacker controlled code execution or other undefined behaviour. In ASN1_mbstring_copy() and ASN1_mbstring_ncopy() the destination size for Unicode output is computed in a signed int: by left shift of the input character count for BMPSTRING (UTF-16) and UNIVERSALSTRING (UTF-32), and by summing per-character byte counts for UTF8STRING. The calculation overflows when the input reaches around 2^30 characters. In the worst case (UNIVERSALSTRING at 2^30 characters) the size wraps to zero, OPENSSL_malloc(1) is called, and the subsequent character copy writes several gigabytes past the one-byte allocation. X.509 certificate processing routes through ASN1_STRING_set_by_NID(), whose DIRSTRING_TYPE mask excludes UNIVERSALSTRING and whose per-NID size limits cap the input length; no network protocol or certificate-handling path in OpenSSL exercises the overflow. Triggering the bug requires an application that calls ASN1_mbstring_copy() or ASN1_mbstring_ncopy() directly, or registers a custom string type via ASN1_STRING_TABLE_add(), with attacker-controlled input on the order of half a gigabyte or more. For these reasons this issue was assigned Low severity. The FIPS modules in 4.0, 3.6, 3.5, 3.4 and 3.0 are not affected by this issue, as the affected code is outside the OpenSSL FIPS module boundary.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-09
Last Modified
2026-06-09
Generated
2026-06-10
AI Q&A
2026-06-09
EPSS Evaluated
N/A
NVD
CVE-2026-7383
EUVD
EUVD-2026-35474
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openssl openssl to 4.0|end_excluding=3.6|end_excluding=3.5|end_excluding=3.4|end_excluding=3.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a signed integer overflow in the function ASN1_mbstring_ncopy() used in OpenSSL. When calculating the size of the destination buffer for Unicode output, the signed integer used for sizing can overflow if the input is very large (around 2^30 characters). This overflow causes the buffer size to wrap around to a small value, leading to a heap buffer overflow when copying characters.

Specifically, the overflow happens during size computation for BMPSTRING (UTF-16) and UNIVERSALSTRING (UTF-32) by left shifting the input character count, or by summing byte counts for UTF8STRING. In the worst case, this results in allocating a very small buffer but writing several gigabytes of data past it.

This bug is not triggered by normal X.509 certificate processing in OpenSSL, but requires an application to call ASN1_mbstring_copy() or ASN1_mbstring_ncopy() directly with attacker-controlled input of very large size, or to register a custom string type that can be exploited similarly.

Impact Analysis

The heap buffer overflow caused by this vulnerability can lead to a crash of the affected application or potentially allow an attacker to execute arbitrary code or cause other undefined behavior.

However, exploitation requires very large attacker-controlled input (on the order of half a gigabyte or more) and direct use of vulnerable functions, which limits the practical risk in typical OpenSSL usage.

Because of these factors, this issue is assigned a Low severity rating despite the high CVSS base score.

Detection Guidance

This vulnerability occurs in specific OpenSSL functions (ASN1_mbstring_copy() or ASN1_mbstring_ncopy()) when processing very large input sizes (around 2^30 characters). Detection would require monitoring for applications that directly call these functions with attacker-controlled input of half a gigabyte or more.

Since no network protocol or certificate-handling path in OpenSSL exercises this overflow, and the issue requires direct application calls with large inputs, typical network scanning or system commands are unlikely to detect exploitation attempts.

No specific commands or detection methods are provided in the available information.

Mitigation Strategies

Immediate mitigation involves ensuring that applications do not call ASN1_mbstring_copy() or ASN1_mbstring_ncopy() directly with untrusted or attacker-controlled large inputs.

Since the vulnerability requires very large input sizes and direct function calls, restricting or validating input sizes before passing them to these functions can prevent exploitation.

Additionally, using OpenSSL FIPS modules (versions 4.0, 3.6, 3.5, 3.4, and 3.0) can mitigate risk as they are not affected by this issue.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7383. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart