Vulnerabilities in wolfSSL
94 resultsCVE-2026-0819LOWStack buffer overflow in PKCS7 SignedData encoding with custom signed attributesEPSS 0.1%CVE-2026-4159LOWwc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds readEPSS 0.1%CVE-2026-10592MEDIUMWildcard DNS SAN bypasses CA name-constraint checksEPSS —CVE-2026-7511MEDIUMPKCS7_verify signer confusion allows forged signatures to be acceptedEPSS —CVE-2026-6091MEDIUMPartial-chain verification accepts untrusted intermediate as trust anchorEPSS —CVE-2026-55961HIGHwolfSSL_PKCS7_verify() reports success for degenerate (certs-only) PKCS#7 with no signerEPSS —CVE-2026-6092LOWEncrypt-then-MAC could fall back to MAC-then-Encrypt when HAVE_ENCRYPT_THEN_MAC is configuredEPSS —CVE-2026-6330MEDIUMML-KEM ARM64 NEON ciphertext comparison only compares half of the inputEPSS —CVE-2026-6681LOWPKCS#7 decode ignores caller output buffer size, writing past buffer boundsEPSS —CVE-2026-10098MEDIUMOCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_statusEPSS —CVE-2026-55960HIGHUn-negotiated Raw Public Key (RFC 7250) accepted in place of X.509, bypassing chain validationEPSS —CVE-2026-11703MEDIUMMissing SNI/ALPN binding on stateful (session-ID) TLS session resumptionEPSS —CVE-2026-7532MEDIUMiPAddress name constraints not enforced when WOLFSSL_IP_ALT_NAME is undefinedEPSS —CVE-2026-12340MEDIUMOut-of-bounds heap read in SM2/SM3 certificate Subject Key Identifier computationEPSS —CVE-2026-6325LOWOut-of-bounds write in SetSuitesHashSigAlgo on oversized signature algorithms listEPSS —CVE-2026-6331LOWHMAC zero-length tag forgery in EVP_DigestVerifyFinalEPSS —CVE-2026-6412LOWContinued acceptance of SHA-1/MD5 digests in certificate processingEPSS —CVE-2026-6329MEDIUMPKCS#12 MAC verification uses attacker-controlled comparison lengthEPSS —CVE-2026-55958HIGHRenesas TSIP TLS 1.3 transcript buffer out-of-bounds write in tsip_StoreMessageEPSS —CVE-2026-55964MEDIUMChain intermediate CA:TRUE without keyCertSign accepted as a signing CA (temporary CA exemption)EPSS —