CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2026/03/20 4:9 p.m.•2 views

CVE-2026-3230

A flaw was found in wolfSSL. A remote attacker could exploit a missing cryptographic step in the Transport Layer Security TLS 1.3 client HelloRetryRequest handshake logic. By sending a crafted HelloRetryRequest followed by a ServerHello message that omits the required keyshare extension, an...

2.7CVSS5.8AI score0.00076EPSS

Exploits0References2

Snyk•added 2026/03/19 10:45 p.m.•2 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step due to missing validation in the keyshare process during the TLS 1.3 HelloRetryRequest handshake. An attacker can compromise the confidentiality of encrypted communications by sending a crafted HelloRetryReque...

2.7CVSS5.8AI score0.00076EPSS

Exploits0References2

NVD•added 2026/03/19 9:17 p.m.•3 views

CVE-2026-3230

Missing required cryptographic step in the TLS 1.3 client HelloRetryRequest handshake logic in wolfSSL could lead to a compromise in the confidentiality of TLS-protected communications via a crafted HelloRetryRequest followed by a ServerHello message that omits the required keyshare extension,...

2.7CVSS0.00076EPSS

Exploits0References1

UbuntuCve•added 2026/03/19 9:17 p.m.•1 views

CVE-2026-3230

2.7CVSS5.9AI score0.00076EPSS

Exploits0References2

OSV•added 2026/03/19 9:17 p.m.•5 views

UBUNTU-CVE-2026-3230

2.7CVSS5.8AI score0.00076EPSS

Exploits0References3

CVE•added 2026/03/19 8:59 p.m.•6 views

CVE-2026-3230

wolfSSL’s TLS 1.3 client logic is affected by an improper key_share handling during HelloRetryRequest, allowing a crafted HelloRetryRequest followed by a ServerHello without the key_share extension to derive predictable traffic secrets from the (EC)DHE shared secret. Affected component: TLS hands...

2.7CVSS5.8AI score0.00076EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/19 8:59 p.m.•2 views

CVE-2026-3230 Improper key_share validation in TLS 1.3 HelloRetryRequest

2.1CVSS5.8AI score0.00076EPSS

Exploits0References1

AlpineLinux•added 2026/03/19 8:59 p.m.•2 views

CVE-2026-3230

2.7CVSS5.8AI score0.00076EPSS

Exploits0

Positive Technologies•added 2026/03/19 12:0 a.m.•1 views

PT-2026-26366

2.1CVSS5.8AI score0.00076EPSS

Exploits0References4

CNNVD•added 2026/03/19 12:0 a.m.•5 views

wolfSSL（CyaSSL）安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, designed for developers working with embedded systems. wolfSSL CyaSSL contains a security vulnerability. This vulnerability stems from the lack of necessary encryption steps in the TLS...

2.7CVSS5.8AI score0.00076EPSS

Exploits0References2

Tenable Nessus•added 2026/03/16 12:0 a.m.•5 views

OpenSSL 3.6.0 < 3.6.2 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.6.2 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.5AI score0.0014EPSS

Exploits0References27

SUSE CVE•added 2026/03/15 12:25 a.m.•3 views

SUSE CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.3CVSS5.8AI score0.00038EPSS

Exploits0References5