OpenSSL buffer overflow in certificate parsing. Affects OpenSSL 3.0.x (deployed ~1 year). Update to 3.0.7 immediately. Most critical systems still use OpenSSL 1.1.1 which is unaffected, but audit all apps using OpenSSL 3.0.
X.509 Email Address Variable Length Buffer Overflow in OpenSSL 3.0.x before 3.0.7. Punycode decoding in X.509 certificate processing can overflow stack buffer.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →