Lucene search
+L

26 matches found

nessus
nessus
added 2026/06/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-8720

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wcBlake2bHmacFinal and wcBlake2sHmacFinal discard the message when the key length exceeds the block size, producing a MAC that is independent of the input. When...

7.5CVSS6AI score0.00111EPSS
Exploits0References3
nvd
nvd
added 2026/06/25 9:16 p.m.10 views

CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

8.8CVSS0.00385EPSS
Exploits0References2
osv
osv
added 2026/06/25 9:16 p.m.4 views

UBUNTU-CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

8.8CVSS6AI score0.00385EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/06/25 8:13 p.m.6 views

CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

8.8CVSS6.1AI score0.00385EPSS
Exploits0References3Affected Software1
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.17 views

PT-2026-52587

Name of the Vulnerable Software and Affected Versions wolfSSL versions prior to 5.9.1 Description A heap buffer overflow occurs in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The issue stems from an integer truncation when calculating the length of the ACK...

8.8CVSS6AI score0.00385EPSS
Exploits0References8
cve
cve
added 2026/03/19 8:20 p.m.21 views

CVE-2026-3547

CVE-2026-3547 concerns wolfSSL before or including version 5.8.4, where an out-of-bounds read can occur in ALPN parsing due to incomplete validation when ALPN is enabled (HAVE_ALPN / --enable-alpn). A crafted ALPN protocol list may trigger a crash, causing a denial of service. ALPN is disabled by...

7.5CVSS5.8AI score0.00257EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2026/03/19 5:10 p.m.4 views

CVE-2026-2645

In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 server state machine implementation. The server could incorrectly accept the CertificateVerify message before the ClientKeyExchange message had been received. This issue affects wolfSSL before 5.8.4 wolfSSL 5.8.2 and earlier is...

6.9CVSS5.8AI score0.00126EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/12/11 5:9 p.m.4 views

CVE-2025-13912 Potential non-constant time compiled code with Clang LLVM

Multiple constant-time implementations in wolfSSL before version 5.8.4 may be transformed into non-constant-time binary by LLVM optimizations, which can potentially result in observable timing discrepancies and lead to information disclosure through timing side-channel attacks...

1CVSS5.9AI score0.00129EPSS
Exploits0References1
nvd
nvd
added 2025/11/21 11:15 p.m.9 views

CVE-2025-11934

Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for downgrading the signature algorithm used. For example when a client sends ECDSA P521 as the supported signature algorithm the server previously...

2.7CVSS0.0015EPSS
Exploits0References2
debiancve
debiancve
added 2025/11/21 10:19 p.m.12 views

CVE-2025-11933

Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to potentially cause a denial-of-service via a crafted ClientHello message with duplicate CKS extensions...

6.5CVSS5.4AI score0.00403EPSS
Exploits0
debiancve
debiancve
added 2025/11/21 10:12 p.m.9 views

CVE-2025-11934

Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for downgrading the signature algorithm used. For example when a client sends ECDSA P521 as the supported signature algorithm the server previously...

2.7CVSS5.2AI score0.0015EPSS
Exploits0
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-25039

Malware in sbrugna...

5.9CVSS5.1AI score0.00483EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-17290

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00185EPSS
Exploits0References1
nessus
nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-6439

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - examples/benchmark/tlsbench.c in a benchmark tool in wolfSSL through 3.15.7 has a heap-based buffer overflow. CVE-2019-6439 Note that Nessus relies on the...

9.8CVSS7.4AI score0.02552EPSS
Exploits0References2
nessus
nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-11873

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a craft...

9.8CVSS9AI score0.08777EPSS
Exploits0References2
nessus
nessus
added 2025/08/26 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-15651

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSL 4.1.0 has a one-byte heap-based buffer over-read in DecodeCertExtensions in wolfcrypt/src/asn.c because reading the ASNBOOLEAN byte is mishandled for a...

9.8CVSS8.5AI score0.01009EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/07/18 12:0 a.m.9 views

PT-2025-30103

Name of the Vulnerable Software and Affected Versions wolfSSL version 5.8.2 Description In wolfSSL release 5.8.2, blinding support is enabled by default for Curve25519 in applicable builds. This feature provides an additional layer of protection against side-channel attacks aimed at extracting a...

5.6CVSS6.1AI score0.00182EPSS
Exploits0References13
redhatcve
redhatcve
added 2025/05/22 6:43 p.m.11 views

CVE-2021-37155

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response...

9.8CVSS6.8AI score0.01493EPSS
Exploits0References1
nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-1543

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The side-channel protected T-Table implementation in wolfSSL up to version 5.6.5 protects against a side- channel attacker with cache-line resolution. In a...

5.5CVSS5.8AI score0.00185EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/08/29 12:0 a.m.11 views

PT-2024-22582 · Wolfssl +1 · Wolfssl +1

Name of the Vulnerable Software and Affected Versions: WolfSSL versions 5.6.6 and earlier Description: The issue is related to a Fault Injection vulnerability in the wc ed25519 sign msg function in WolfSSL, which affects the ed25519 key structure. This vulnerability allows a remote attacker...

8.8CVSS7.5AI score0.00464EPSS
Exploits0References15
Rows per page
Query Builder