CVE-2026-42767 | OpenSSL up to 4.0.0 symmAlg null pointer dereference

A vulnerability, which was classified as problematic, was found in OpenSSL up to 3.0.20/3.4.5/3.5.6/3.6.2/4.0.0. The impacted element is an unknown function. Executing a manipulation of the argument symmAlg can lead to null pointer dereference.

The identification of this vulnerability is CVE-2026-42767. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More