How to fix CVE-2025-15468?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Vendor patch is available.

Is OpenSSL affected by CVE-2025-15468?

CVE-2025-15468 presents moderate security risk, a null pointer dereference vulnerability rated CVSS 5.9. Exploitation could compromise the security of affected deployments. A patch is available and should be applied during regular vulnerability management.

CVE-2025-15468

MEDIUM

2026-01-27 [email protected]

5.9

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

Patch Released

Feb 02, 2026 - 18:38 nvd

Patch available

CVE Published

Jan 27, 2026 - 16:16 nvd

MEDIUM 5.9

Description

Issue summary: If an application using the SSL_CIPHER_find() function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Service. Some applications call SSL_CIPHER_find() from the client_hello_cb callback on the cipher ID received from the peer. If this is done with an SSL object implementing the QUIC protocol, NULL pointer dereference will happen if the examined cipher ID is unknown or unsupported. As it is not very common to call this function in applications using the QUIC protocol and the worst outcome is Denial of Service, the issue was assessed as Low severity. The vulnerable code was introduced in the 3.2 version with the addition of the QUIC protocol support. The FIPS modules in 3.6, 3.5, 3.4 and 3.3 are not affected by this issue, as the QUIC implementation is outside the OpenSSL FIPS module boundary. OpenSSL 3.6, 3.5, 3.4 and 3.3 are vulnerable to this issue. OpenSSL 3.0, 1.1.1 and 1.0.2 are not affected by this issue.

Analysis

Issue summary: If an application using the SSL_CIPHER_find() function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. [CVSS 5.9 MEDIUM]

Technical Context

Classified as CWE-476 (NULL Pointer Dereference). Affects Openssl. Issue summary: If an application using the SSL_CIPHER_find() function in

a QUIC protocol client or server receives an unknown cipher suite from

the peer, a NULL dereference occurs.

Impact summary: A NULL pointer dereference leads to abnormal termination of

the running process causing Denial of Service.

Some applications call SSL_CIPHER_find() from the client_hello_cb callback

on the cipher ID received from the peer. If this is done with an SSL object

implementing the QUIC protocol, NULL pointe

Affected Products

Vendor: Openssl. Product: Openssl.

Remediation

A vendor patch is available — apply it immediately. Restrict network access to the affected service where possible.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +30

POC: 0

Vendor Status

CVE-2025-15468 vulnerability details – vuln.today

Back

CVE-2025-15468

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

CVE-2025-15468

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

External POC / Exploit Code