CVE-2026-5447

Heap buffer overflow in CertFromX509() via AuthorityKeyIdentifier

CVSS 6.3 MEDIUMEPSS 0.2%CWE-122

Heap buffer overflow in CertFromX509 via AuthorityKeyIdentifier size confusion. A heap buffer overflow occurs when converting an X.509 certificate internally due to incorrect size handling of the AuthorityKeyIdentifier extension.

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected products

wolfSSL · wolfSSL

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/wolfSSL/wolfssl/pull/10112