Vulnerability Database

324,292

Total vulnerabilities in the database

CVE-2026-22791

openCryptoki is a PKCS#11 library and tools for Linux and AIX. In 3.25.0 and 3.26.0, there is a heap buffer overflow vulnerability in the CKM_ECDH_AES_KEY_WRAP implementation allows an attacker with local access to cause out-of-bounds writes in the host process by supplying a compressed EC public key and invoking C_WrapKey. This can lead to heap corruption, or denial-of-service.

Published: Jan 13, 2026
Updated: Feb 4, 2026
CVE: CVE-2026-22791
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.6
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWEs:

CWE-131

Affected Software
References

Software	From	Fixed in
opencryptoki_project / opencryptoki	3.25.0	3.25.0.x
opencryptoki_project / opencryptoki	3.26.0	3.26.0.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo