CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

88 matches found

AlpineLinux•added 2026/04/09 9:15 p.m.•4 views

CVE-2026-5263

URI nameConstraints from constrained intermediate CAs are parsed but not enforced during certificate chain verification in wolfcrypt/src/asn.c. A compromised or malicious sub-CA could issue leaf certificates with URI SAN entries that violate the nameConstraints of the issuing CA, and wolfSSL woul...

7CVSS5.3AI score0.00152EPSS

Exploits0

NVD•added 2026/04/09 8:16 p.m.•3 views

CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS0.00283EPSS

Exploits0References1

OSV•added 2026/04/09 8:16 p.m.•0 views

DEBIAN-CVE-2026-5187

9.8CVSS5.3AI score0.00283EPSS

Exploits0References1

UbuntuCve•added 2026/04/09 8:16 p.m.•0 views

CVE-2026-5187

9.8CVSS5.8AI score0.00283EPSS

Exploits0References3

OSV•added 2026/04/09 8:16 p.m.•2 views

UBUNTU-CVE-2026-5187

9.8CVSS5.8AI score0.00283EPSS

Exploits0References4

Cvelist•added 2026/04/09 7:45 p.m.•21 views

CVE-2026-5187 Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL

2.3CVSS0.00283EPSS

Exploits0References1

ATTACKERKB•added 2026/04/09 7:45 p.m.•2 views

CVE-2026-5187

2.3CVSS5.9AI score0.00283EPSS

Exploits0References2

AlpineLinux•added 2026/04/09 7:45 p.m.•1 views

CVE-2026-5187

9.8CVSS5.7AI score0.00283EPSS

Exploits0

Debian CVE•added 2026/04/09 7:45 p.m.•2 views

CVE-2026-5187

9.8CVSS5.3AI score0.00283EPSS

Exploits0

CVE•added 2026/04/09 7:45 p.m.•8 views

CVE-2026-5187

CVE-2026-5187 affects wolfSSL’s wolfcrypt DecodeObjectId() in asn.c, with two potential heap out-of-bounds writes. First, a bounds check validates only one slot before writing two OID arcs (out[0], out[1]), allowing a 2-byte OOB write when outSz == 1. Second, callers pass sizeof(decOid) (64 bytes...

9.8CVSS5.9AI score0.00283EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/04/09 12:0 a.m.•3 views

PT-2026-31720

Name of the Vulnerable Software and Affected Versions wolfcrypt affected versions not specified Description Two potential heap out-of-bounds write locations existed in the DecodeObjectId function within wolfcrypt/src/asn.c. The first issue arises because a bounds check validates only one availabl...

2.3CVSS5.8AI score0.00283EPSS

Exploits0References4

RedhatCVE•added 2026/03/26 3:16 p.m.•4 views

CVE-2026-4395

Heap-based buffer overflow in the KCAPI ECC code path of wceccimportx963ex in wolfSSL wolfcrypt allows a remote attacker to write attacker-controlled data past the bounds of the pubkeyraw buffer via a crafted oversized EC public key point. The WOLFSSLKCAPIECC code path copies the input to...

9.8CVSS6.1AI score0.00344EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:12 p.m.•3 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

4.2CVSS5.8AI score0.00153EPSS

Exploits0References1