Important: Red Hat Security Advisory: RHTAS 1.4 - GA Release of Model Transparency
Details
CVSS v3
9.8
CVSS v4
7.2
NVD published
2026-03-18 00:16:19
EPSS
<0.1% probability · 5.3th percentile — 2026-04-17
Affected versions
cpe:2.3:a:pyopenssl:pyopenssl:*:*:*:*:*:*:*:*
Summary
pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to `set_cookie_generate_callback` returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0.0, cookie values that are too long are now rejected.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.