CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

82 matches found

CVE-2026-5393

Dual-Algorithm CertificateVerify out-of-bounds read. When processing a dual-algorithm CertificateVerify message, an out-of-bounds read can occur on crafted input. This can only occur when --enable-experimental and --enable-dual-alg-certs is used when building wolfSSL...

9.1CVSS5.4AI score0.00051EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в golang-1.19

Verifying a certificate chain that contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects all crypto/TLS clients, as well as servers that have Config.ClientAuth set to VerifyClientCertIfGiven or RequireAndVerifyClientCert. The default...

5.9CVSS6.9AI score0.00602EPSS

Exploits0References2

EUVD•added 2026/04/10 12:30 a.m.•0 views

EUVD-2026-21231

6.3CVSS5.9AI score0.00051EPSS

Exploits0References2

NVD•added 2026/04/10 12:16 a.m.•2 views

CVE-2026-5393

9.1CVSS0.00051EPSS

Exploits0References1

Snyk•added 2026/04/10 12:11 a.m.•0 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the DoTls13CertificateVerify process when handling a dual-algorithm CertificateVerify message due to improper bounds checking on crafted input. An attacker can cause the application to read memory outside the...

9.1CVSS5.9AI score0.00051EPSS

Exploits0References2

Tenable Nessus•added 2026/04/10 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-5393

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dual-Algorithm CertificateVerify out-of-bounds read. When processing a dual-algorithm CertificateVerify message, an out-of-bounds read can occur on crafted inpu...

9.1CVSS5.5AI score0.00051EPSS

Exploits0References3

CNNVD•added 2026/04/10 12:0 a.m.•3 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, designed for developers working with embedded systems. There is a security vulnerability in wolfSSL, which stems from an out-of-bounds read during the processing of double-algorithm...

9.1CVSS5.8AI score0.00051EPSS

Exploits0References1

UbuntuCve•added 2026/04/10 12:0 a.m.•0 views

CVE-2026-5393

9.1CVSS5.8AI score0.00051EPSS

Exploits0References2

Cvelist•added 2026/04/09 11:2 p.m.•22 views

CVE-2026-5393 OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTS

6.3CVSS0.00051EPSS

Exploits0References1

AlpineLinux•added 2026/04/09 11:2 p.m.•3 views

CVE-2026-5393

9.1CVSS5.2AI score0.00051EPSS

Exploits0References1

CVE•added 2026/04/09 11:2 p.m.•10 views

CVE-2026-5393

CVE-2026-5393 describes an out-of-bounds read in wolfSSL during DoTls13CertificateVerify when processing a dual-algorithm CertificateVerify message. The issue occurs only if wolfSSL is built with the experimental features enabled and dual-algorithm certificate support (--enable-experimental and -...

9.1CVSS5.9AI score0.00051EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/04/09 11:2 p.m.•0 views

CVE-2026-5393

6.3CVSS5.9AI score0.00051EPSS

Exploits0References2

Debian CVE•added 2026/04/09 11:2 p.m.•1 views

CVE-2026-5393

9.1CVSS5.2AI score0.00051EPSS

Exploits0

Positive Technologies•added 2026/04/09 12:0 a.m.•1 views

PT-2026-31826

Name of the Vulnerable Software and Affected Versions wolfSSL affected versions not specified Description An out-of-bounds read can occur when processing a dual-algorithm CertificateVerify message on crafted input. This issue only occurs when wolfSSL is built with the --enable-experimental and...

9.1CVSS5.8AI score0.00051EPSS

Exploits0References11

Cvelist•added 2026/03/24 1:36 a.m.•23 views

CVE-2026-33308 mod_gnutls missing key purpose check in client certificate verification

Modgnutls is a TLS module for Apache HTTPD based on GnuTLS. Prior to version 0.13.0, code for client certificate verification did not check the key purpose as set in the Extended Key Usage extension. An attacker with access to the private key for a valid certificate issued by a CA trusted for TLS...

6.8CVSS0.00016EPSS

Exploits0References1

Snyk•added 2026/03/19 6:51 p.m.•3 views

Improperly Implemented Security Check for Standard

Overview Affected versions of this package are vulnerable to Improperly Implemented Security Check for Standard in the TLS 1.2 server state machine implementation. An attacker can disrupt the handshake process or potentially compromise the security of the TLS session by sending a CertificateVerif...

7.5CVSS5.8AI score0.00023EPSS

Exploits0References2

NVD•added 2026/03/19 6:16 p.m.•4 views

CVE-2026-2645

In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 server state machine implementation. The server could incorrectly accept the CertificateVerify message before the ClientKeyExchange message had been received. This issue affects wolfSSL before 5.8.4 wolfSSL 5.8.2 and earlier is...

7.5CVSS0.00023EPSS

Exploits0References1