What is CVE-2026-41898?

CVE-2026-41898 is a security advisory published by Microsoft Security Response Center (MSRC) with High severity. rust-openssl: Unchecked callback-returned length in PSK and cookie generate trampolines can cause OpenSSL to leak adjacent memory to the network peer

Which CVE IDs does CVE-2026-41898 cover?

CVE-2026-41898 covers the following CVE IDs: CVE-2026-41898. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

CVE-2026-41898High

rust-openssl: Unchecked callback-returned length in PSK and cookie generate trampolines can cause OpenSSL to leak adjacent memory to the network peer

Vendor

Microsoft Security Response Center (MSRC)

Published

June 2, 2026

Last Modified

—

🔗 CVE IDs covered (1)

CVE-2026-41898 →