← back
CVE-2026-6678

Integer underflow in wc_PKCS7_DecryptOri handling crafted Other Recipient Info

CVSS 1 LOWEPSS 0.1%CWE-191
Integer underflow in wc_PKCS7_DecryptOri when handling crafted Other Recipient Info, leading to incorrect length handling during decryption.
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/U:Clear
Affected products
wolfSSL · wolfSSL

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/wolfSSL/wolfssl/pull/10203https://www.wolfssl.com/docs/security-vulnerabilities/