Sensitive Data Leakage in OpenSSL Affected by RSASVE Key Encapsulation
CVE-2026-31790

Currently unrated

Key Information:

Vendor

OpenSSL
Status
OpenSSL
Vendor
CVE Published:
7 April 2026

What is CVE-2026-31790?

Applications using RSA key encapsulation in OpenSSL may inadvertently expose sensitive data due to uninitialized memory buffers. Specifically, if EVP_PKEY_encapsulate() is called with an invalid RSA public key without prior validation, stale data from previous executions might be sent to an attacker. This vulnerability emphasizes the importance of implementing EVP_PKEY_public_check() as a mitigation step to ensure that only valid keys are processed, thus safeguarding against potential data leaks.

Affected Version(s)

OpenSSL 3.6.0 < 3.6.2

OpenSSL 3.5.0 < 3.5.6

OpenSSL 3.4.0 < 3.4.5

References

https://openssl-library.org/news/secadv/20260407.txt
vendor-advisory
https://github.com/openssl/openssl/commit/abd8b2eec7e3f3f...
patch
https://github.com/openssl/openssl/commit/001e01db3e996e1...
patch

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Simo Sorce (Red Hat)
Nikola Pajkovsky
.