Vulnerabilidades em WolfSSL
94 resultadosCVE-2026-10512LOWX25519 x86_64 assembly final reduction leaves non-canonical field elementEPSS 0.2%CVE-2026-5778LOWInteger underflow leads to out-of-bounds access in sniffer ChaCha decrypt path.EPSS 0.2%CVE-2026-5447MEDIUMHeap buffer overflow in CertFromX509() via AuthorityKeyIdentifierEPSS 0.2%CVE-2025-7395CRITICALDomain Name Validation Bypass with Apple Native Certificate ValidationEPSS 0.2%CVE-2026-12340MEDIUMOut-of-bounds heap read in SM2/SM3 certificate Subject Key Identifier computationEPSS 0.2%CVE-2026-3230LOWImproper key_share validation in TLS 1.3 HelloRetryRequestEPSS 0.2%CVE-2026-6329MEDIUMPKCS#12 MAC verification uses attacker-controlled comparison lengthEPSS 0.2%CVE-2026-55962MEDIUMTLS 1.3 post-handshake authentication: server accepts Finished without client Certificate/CertificateVerifyEPSS 0.2%CVE-2026-6681LOWPKCS#7 decode ignores caller output buffer size, writing past buffer boundsEPSS 0.2%CVE-2026-6330MEDIUMML-KEM ARM64 NEON ciphertext comparison only compares half of the inputEPSS 0.2%CVE-2025-11935MEDIUMForward Secrecy Violation in WolfSSL TLS 1.3EPSS 0.2%CVE-2026-5393MEDIUMOOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTSEPSS 0.2%CVE-2026-11310HIGHX.509 trust-chain bypass in wolfSSL_X509_verify_cert() via untrusted intermediate anchoringEPSS 0.2%CVE-2026-11999HIGHX.509 trust-chain bypass via path-depth exhaustion in wolfSSL_X509_verify_cert()EPSS 0.2%CVE-2026-55960HIGHUn-negotiated Raw Public Key (RFC 7250) accepted in place of X.509, bypassing chain validationEPSS 0.2%CVE-2024-1543MEDIUMAES T-Table sub-cache-line leakageEPSS 0.2%CVE-2026-5501HIGHImproper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf CertificatesEPSS 0.2%CVE-2026-10098MEDIUMOCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_statusEPSS 0.2%CVE-2025-7396MEDIUMCurve25519 BlindingEPSS 0.2%CVE-2026-10592MEDIUMWildcard DNS SAN bypasses CA name-constraint checksEPSS 0.2%