External risk intelligence

OCaml-TLS Certificate Validation Flaw Allows Impersonation.

CVE advisorySeverity: CRITICAL (CVSS 9.1)

CVE-2026-45388

A flaw in the OCaml-TLS library allows for server impersonation due to insufficient certificate validation. This could enable attackers to intercept or manipulate sensitive data exchanged during TLS sessions by tricking clients into connecting to malicious servers. Confirmation of OCaml-TLS usage and assessment of expo

3Halo Surface Signal

External exposure likelihood

Halo Surface Signal score for CVE-2026-45388

OCaml-TLS is a library used by developers to build network-facing applications. While it is used to implement TLS in internet-connected software, the vulnerability exists within the library code itself rather than a pre-packaged internet-facing service or appliance, making exposure dependent on how developers utilize the library in their specific deployments.

PCI scan relevance

PCI Relevance for CVE-2026-45388

Yes

CVE-2026-45388 — Halo PCI Relevance: Yes. Under typical PCI ASV external scan criteria, this issue may be flagged for scan prioritization.

This vulnerability could cause a PCI ASV scan failure due to its high severity score, requiring remediation.

Scan-prioritization guidance only—not a PCI DSS certification or ASV attestation.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Horizon Alert

Summary of the vulnerability and why it matters

This advisory concerns a flaw in the OCaml-TLS library, a component used in developing secure network applications. The vulnerability allows for server impersonation due to insufficient certificate validation, potentially impacting the trust and integrity of communications handled by software using this library. The primary concern is to confirm if OCaml-TLS is in use within our environment and to assess any potential exposure.

  • Flaw in secure communication library.
  • Affects trust in network communications.
  • Confirm library use and exposure.

Attack Path

How an attacker could exploit the issue

An attacker could impersonate a legitimate server by using a specially crafted certificate, even if the certificate is not intended for server authentication. This is possible because the OCaml-TLS client does not perform adequate verification of the server's certificate details, specifically the KeyUsage and ExtendedKeyUsage fields. By exploiting this, an attacker could trick the TLS client into establishing a connection with a malicious server, potentially leading to the interception or manipulation of sensitive data.

  • No authentication or user interaction needed.
  • Vulnerable client accepts improper certificates.
  • Enables server impersonation and data compromise.

Live Threat

Current exploitation, exposure, and threat context

When supported by the advisory, the OCaml-TLS client implementation could be tricked into accepting fraudulent server certificates. This could allow an attacker to impersonate a legitimate server, potentially leading to the interception of sensitive information exchanged during TLS sessions.

  • Compromised server authentication.
  • Impersonation via forged certificates.
  • Interception of sensitive data.

Operational Fix

Recommended remediation, mitigation, and detection steps

The OCaml-TLS library's client implementation requires immediate attention from teams responsible for network-facing applications that utilize TLS. The first critical step is to identify all deployments of this library, assess their exposure and business criticality, and then determine the accountable owner for remediation. This proactive approach will ensure a risk-based and efficient response to the identified vulnerability.

  • Application owners should own the issue.
  • Verify library usage and server reachability.
  • Plan remediation based on confirmed risk.

Validate whether this threat affects your internet-facing exposure.

Halo Threat Intelligence helps prioritize remediation with Halo Surface Signal and H/A/L/O context. Start exposure validation with a free external attack surface trial.

Free EASM Trial See How Signal Works

Frequently asked questions

What is OCaml-TLS?

OCaml-TLS is a software library written in the OCaml programming language. Developers integrate this library into their own applications to handle TLS, the protocol that encrypts and secures communications over a network. It serves as a building block for programs that need to verify server identities and keep data private during transit.

What is the vulnerability in CVE-2026-45388?

This flaw is classified as CWE-295, which involves improper certificate validation. In this CVE, the OCaml-TLS client fails to properly check specific certificate fields, such as KeyUsage and ExtendedKeyUsage. Because these fields are ignored, the software may mistakenly trust a certificate that was never intended to prove a server's identity, allowing an attacker to impersonate a legitimate service.

How can an attacker trigger this bug?

An attacker can trigger this by presenting a specially crafted or inappropriate certificate during the TLS handshake. The client will accept the connection as valid because it does not verify if the certificate is actually authorized for server authentication. This does not occur if the server provides a strictly correct and valid certificate that the client happens to successfully validate by other means.

Is my software vulnerable to this TLS issue?

According to Halo Surface Signal, risk depends on how your developers used OCaml-TLS within your specific applications. Since this is a library, not a standalone service, you are only at risk if your software uses OCaml-TLS to connect to servers and you have not yet updated to version 2.1.0 or later. Internal applications are still vulnerable if they initiate TLS connections to untrusted or compromised endpoints.

What should I do if I use OCaml-TLS?

First, perform an inventory to locate where OCaml-TLS is used across your internal and external applications. Once you have identified these components, review your software supply chain to update the library to version 2.1.0 or newer. Prioritize updates for applications that handle sensitive data or connect to high-risk network environments.

References

Sources and related resources

Primary sources: NVD, CVE.org.

NVDPublished Modified