CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD-2026-39548

X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier wolfSSLX509verifycert. This affects only builds with --enable-opensslextra OPENSSLEXTRA and whose application validates certificates by calling X509verifycert with caller-supplied untrusted intermediate certificates; for...

8.7CVSS5.9AI score

Exploits0References2

ATTACKERKB•added yesterday•3 views

CVE-2026-11310

8.7CVSS5.9AI score

Exploits0References3Affected Software1

NVD•added yesterday•5 views

CVE-2026-6091

Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An attacker could present a chain that ends at an intermediate they control and have it accepted as valid. This affects the OpenSSL...

6CVSS

Exploits0References2

EUVD•added yesterday•4 views

EUVD-2026-39486

6CVSS5.9AI score

Exploits0References2

ATTACKERKB•added yesterday•3 views

CVE-2026-6091

6CVSS5.9AI score

Exploits0References3Affected Software1

Cvelist•added yesterday•6 views

CVE-2026-6091 Partial-chain verification accepts untrusted intermediate as trust anchor

6CVSS

Exploits0References2

CVE•added yesterday•8 views

CVE-2026-6091

Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. The vulnerability affects the wolfSSL OpenSSL compatibility certificate-path-building path (wolfSSL_X509_verify_cert / X509_STORE, OPENSSL_E...

6CVSS5.9AI score

Exploits0References2

RedhatCVE•added 2026/04/22 7:22 a.m.•2 views

CVE-2026-5501

wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints CA:FALSE that is legitimately signed by a trusted root. An attacker who obtains any leaf...

8.6CVSS5.8AI score0.00184EPSS

Exploits0References1

Snyk•added 2026/04/10 5:8 a.m.•5 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation in the wolfSSLX509verifycert function. An attacker can bypass certificate signature validation by supplying a certificate chain where an untrusted intermediate with Basic Constraints set to CA:FALSE is...

8.6CVSS5.8AI score0.00184EPSS

Exploits0References2

OSV•added 2026/04/10 4:17 a.m.•3 views

UBUNTU-CVE-2026-5501

8.6CVSS5.9AI score0.00184EPSS

Exploits0References3

CVE•added 2026/04/10 3:7 a.m.•46 views

CVE-2026-5501

CVE-2026-5501 involves wolfSSL’s X509_verify_cert in the OpenSSL compatibility layer. The vulnerability arises when a certificate chain is presented where the leaf’s signature is not checked if an untrusted intermediate (CA:FALSE) signed by a trusted root is supplied. An attacker with any leaf ce...

8.6CVSS6AI score0.00184EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/04/10 3:7 a.m.•0 views

CVE-2026-5501

8.6CVSS6AI score0.00184EPSS

Exploits0References2

AlpineLinux•added 2026/04/10 3:7 a.m.•3 views

CVE-2026-5501

8.6CVSS5.5AI score0.00184EPSS

Exploits0

Positive Technologies•added 2026/04/10 12:0 a.m.•6 views

PT-2026-31865

Name of the Vulnerable Software and Affected Versions wolfSSL versions prior to 5.9.1 Description The wolfSSL X509 verify cert function within the OpenSSL compatibility layer does not properly check the signature of a certificate's leaf when an untrusted intermediate certificate with Basic...

8.6CVSS5.8AI score0.00184EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by