Known Vulnerabilities for products from WolfSSL
Listed below are 20 of the newest known vulnerabilities associated with the vendor "WolfSSL".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5778 json | Integer underflow in wolfSSL packet sniffer <= 5.9.0 allows an attacker to cause a program crash in the AEAD decryption path ... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5772 json | A 1-byte stack buffer over-read was identified in the MatchDomainName function (src/internal.c) during wildcard hostname vali... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5507 json | When restoring a session from cache, a pointer from the serialized session data is used in a free operation without validatio... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5504 json | A padding oracle exists in wolfSSL's PKCS7 CBC decryption that could allow an attacker to recover plaintext through repeated ... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5503 json | In TLSX_EchChangeSNI, the ctx->extensions branch set extensions unconditionally even when TLSX_Find returned NULL. This cause... | Not Provided | 2026-04-09 | 2026-04-27 |
| CVE-2026-5501 json | Not Provided | 2026-04-10 | 2026-04-22 | |
| CVE-2026-5500 json | wolfSSL's wc_PKCS7_DecodeAuthEnvelopedData() does not properly sanitize the AES-GCM authentication tag length received and ha... | Not Provided | 2026-04-10 | 2026-04-27 |
| CVE-2026-5479 json | In wolfSSL's EVP layer, the ChaCha20-Poly1305 AEAD decryption path in wolfSSL_EVP_CipherFinal (and related EVP cipher finaliz... | Not Provided | 2026-04-10 | 2026-04-29 |
| CVE-2026-5477 json | An integer overflow existed in the wolfCrypt CMAC implementation, that could be exploited to forge CMAC tags. The function wc... | Not Provided | 2026-04-10 | 2026-04-27 |
| CVE-2026-5466 json | Not Provided | 2026-04-10 | 2026-04-22 | |
| CVE-2026-5460 json | A heap use-after-free exists in wolfSSL's TLS 1.3 post-quantum cryptography (PQC) hybrid KeyShare processing. In the error ha... | Not Provided | 2026-04-10 | 2026-04-29 |
| CVE-2026-5448 json | X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A buffer overflow may occur when parsing date f... | Not Provided | 2026-04-10 | 2026-04-29 |
| CVE-2026-5447 json | Heap buffer overflow in CertFromX509 via AuthorityKeyIdentifier size confusion. A heap buffer overflow occurs when converting... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5446 json | In wolfSSL, ARIA-GCM cipher suites used in TLS 1.2 and DTLS 1.2 reuse an identical 12-byte GCM nonce for every application-da... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5393 json | Dual-Algorithm CertificateVerify out-of-bounds read. When processing a dual-algorithm CertificateVerify message, an out-of-bo... | Not Provided | 2026-04-10 | 2026-04-29 |
| CVE-2026-5392 json | Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an OOB read on the heap. The missing bounds che... | Not Provided | 2026-04-10 | 2026-04-29 |
| CVE-2026-5295 json | A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wc_PKCS7_DecryptOri() function in wolfcrypt/src/pkcs7... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5264 json | Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that trigg... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5263 json | URI nameConstraints from constrained intermediate CAs are parsed but not enforced during certificate chain verification in wo... | Not Provided | 2026-04-09 | 2026-04-29 |
| CVE-2026-5194 json | Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than... | Not Provided | 2026-04-09 | 2026-04-16 |