VYPR

Vcpkg

by Microsoft

Source repositories

CVEs (1)

  • CVE-2026-34054HigMar 31, 2026
    risk 0.44cvss 7.8epss 0.01

    vcpkg is a free and open-source C/C++ package manager. Prior to version 3.6.1#3, vcpkg's Windows builds of OpenSSL set openssldir to a path on the build machine, making that path be attackable later on customer machines. This issue has been patched in version 3.6.1#3.