Vulnerabilidades em wolfssl
94 resultadosCVE-2026-5392LOWwolfSSL heap OOB read in PKCS7 SignedData streamingEPSS 0.2%CVE-2026-6731MEDIUMX.509 name constraint bypass via Subject CN treated as a DNS nameEPSS 0.2%CVE-2026-5479HIGHwolfSSL EVP ChaCha20-Poly1305 AEAD authentication tagEPSS 0.2%CVE-2026-5263HIGHURI nameConstraints not enforced in ConfirmNameConstraints()EPSS 0.2%CVE-2026-6291MEDIUMBleichenbacher padding oracle in PKCS#7 KTRI RSA PKCS#1 v1.5 decryptionEPSS 0.2%CVE-2025-11934LOWImproper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerifyEPSS 0.1%CVE-2026-5466HIGHwc_VerifyEccsiHash missing sanity checkEPSS 0.1%CVE-2026-11310HIGHX.509 trust-chain bypass in wolfSSL_X509_verify_cert() via untrusted intermediate anchoringEPSS 0.1%CVE-2026-11999HIGHX.509 trust-chain bypass via path-depth exhaustion in wolfSSL_X509_verify_cert()EPSS 0.1%CVE-2026-55960HIGHUn-negotiated Raw Public Key (RFC 7250) accepted in place of X.509, bypassing chain validationEPSS 0.1%CVE-2026-6092LOWEncrypt-then-MAC could fall back to MAC-then-Encrypt when HAVE_ENCRYPT_THEN_MAC is configuredEPSS 0.1%CVE-2026-5188LOWInteger underflow in X.509 SAN parsing in wolfSSLEPSS 0.1%CVE-2026-6450LOWCRL critical extension bypass in ParseCRL_ExtensionsEPSS 0.1%CVE-2026-3580LOWCompiler-induced timing leak in sp_256_get_entry_256_9 on RISC-VEPSS 0.1%CVE-2025-12889LOWTLS 1.2 Client Can Downgrade Digest UsedEPSS 0.1%CVE-2026-2645MEDIUMAcceptance of CertificateVerify Message before ClientKeyExchange in TLS 1.2EPSS 0.1%CVE-2025-13912LOWPotential non-constant time compiled code with Clang LLVMEPSS 0.1%CVE-2026-10592MEDIUMWildcard DNS SAN bypasses CA name-constraint checksEPSS 0.1%CVE-2026-2646MEDIUMHeap buffer overflow in session parsing with wolfSSL_d2i_SSL_SESSION() functionEPSS 0.1%CVE-2026-5448LOW1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBeforeEPSS 0.1%