Imprint

Vulnerabilities 2026Permanent link for this heading

OpenSSL stack buffer overflow vulnerability (PDO23173)Permanent link for this heading

First published: 13 March 2026

Last update: 13 March 2026

ID: PDO23173

Affected Components: Fabasoft Cloud

Severity: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, Base Score: 9.8

Status: Final

CVEs: CVE-2025-15467

SummaryPermanent link for this heading

In the third-party library OpenSSL, a security vulnerability has been identified and classified as CVE-2025-15467 where maliciously crafted parameters can trigger a stack buffer overflow.

In particular circumstances an attacker may be able to exploit this vulnerability in the Fabasoft Cloud.

ImpactPermanent link for this heading

According to OpenSSL's information on this vulnerability the stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution.

RemediationPermanent link for this heading

Fabasoft has updated the third-party library.

Fabasoft CloudPermanent link for this heading

A hotfix was applied in the Fabasoft Cloud at 5. February 2026.