Ofri Ouzan, JFrog Security Researcher | January 28, 2026 The JFrog Security Research team is tracking a newly disclosed OpenSSL vulnerability, CVE-2025-15467, a stack overflow issue that may lead to remote code execution (RCE). While no official CVSS score has been assigned yet, it was rated with a “high” severity by OpenSSL and based on its characteristics, we assess that it may be rated as Critical by NVD. OpenSSL recently patched 12 vulnerabilities, including 10 low, 1 moderate, and 1 high se...