CVE-2026-45445 | OpenSSL up to 4.0.0 EVP_Cipher missing cryptographic step

A vulnerability described as problematic has been identified in OpenSSL up to 3.0.20/3.4.5/3.5.6/3.6.2/4.0.0. This vulnerability affects the function EVP_Cipher. Such manipulation leads to missing cryptographic step.

This vulnerability is listed as CVE-2026-45445. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More