Improper input validation in Rust-openssl

CVE-2026-42327

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate's AIA extension as OpensslString, whose Deref<Target = str> wra…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.000 (6.2th percentile) — read the EPSS interpretation.