Lucene search
K

133 matches found

CVE
CVE
added 2026/03/19 5:10 p.m.21 views

CVE-2026-2645

CVE-2026-2645 concerns wolfSSL’s TLS 1.2 server state machine: in 5.8.2 and earlier a logic flaw could allow accepting a CertificateVerify before ClientKeyExchange. The issue affects wolfSSL versions before 5.8.4; 5.8.4 detects the problem later in the handshake, while 5.9.0 hardened to catch it ...

7.5CVSS5.8AI score0.00126EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.11 views

PT-2026-26338

Out-of-bounds read in ALPN parsing due to incomplete validation. wolfSSL 5.8.4 and earlier contained an out-of-bounds read in ALPN handling when built with ALPN enabled HAVE ALPN / --enable-alpn. A crafted ALPN protocol list could trigger an out-of-bounds read, leading to a potential process cras...

7.5CVSS5.8AI score0.00257EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-3580

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In wolfSSL 5.8.4, constant-time masking logic in sp256getentry2569 is optimized into conditional branches bnez by GCC when targeting RISC-V RV32I with -O3. This...

4.7CVSS5.8AI score0.00128EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.11 views

CVE-2022-38152

An issue was discovered in wolfSSL before 5.5.0. When a TLS 1.3 client connects to a wolfSSL server and SSLclear is called on its session, the server crashes with a segmentation fault. This occurs in the second session, which is created through TLS session resumption and reuses the initial struct...

7.5CVSS6.7AI score0.02121EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:56 a.m.10 views

CVE-2022-38153

An issue was discovered in wolfSSL before 5.5.0 when --enable-session-ticket is used; however, only version 5.3.0 is exploitable. Man-in-the-middle attackers or a malicious server can crash TLS 1.2 clients during a handshake. If an attacker injects a large ticket more than 256 bytes into a...

5.9CVSS6.8AI score0.01801EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:51 a.m.12 views

CVE-2022-42905

In wolfSSL before 5.5.2, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS 1.3 client or network attacker can trigger a buffer over-read on the heap of 5 bytes. WOLFSSLCALLBACKS is only intended for debugging...

9.1CVSS7.1AI score0.01959EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-13912

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple constant-time implementations in wolfSSL before version 5.8.4 may be transformed into non- constant-time binary by LLVM optimizations, which can...

1CVSS5.4AI score0.00124EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/22 10:31 p.m.4 views

CVE-2025-11933

Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to potentially cause a denial-of-service via a crafted ClientHello message with duplicate CKS extensions...

6.5CVSS6.9AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/22 10:31 p.m.5 views

CVE-2025-11936

Improper input validation in the TLS 1.3 KeyShareEntry parsing in wolfSSL v5.8.2 on multiple platforms allows a remote unauthenticated attacker to cause a denial-of-service by sending a crafted ClientHello message containing duplicate KeyShareEntry values for the same supported group, leading to...

6.3CVSS7AI score0.004EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/22 12:31 a.m.5 views

EUVD-2025-198525

Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to potentially cause a denial-of-service via a crafted ClientHello message with duplicate CKS extensions...

2.3CVSS6.4AI score0.00394EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-11934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for...

2.7CVSS5.8AI score0.0015EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-11933

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to...

6.5CVSS5.9AI score0.00394EPSS
Exploits0References3
CVE
CVE
added 2025/11/21 10:19 p.m.577 views

CVE-2025-11933

CVE-2025-11933 describes an issue in wolfSSL up to version 5.8.2 where improper input validation in the TLS 1.3 CKS extension parsing can allow a remote unauthenticated attacker to cause a denial‑of‑service with a crafted ClientHello containing duplicate CKS extensions. Affected software is wolfS...

6.5CVSS6.5AI score0.00394EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/11/21 10:12 p.m.571 views

CVE-2025-11934

CVE-2025-11934 concerns wolfSSL’s TLS 1.3 CertificateVerify signature algorithm negotiation. The vulnerability stems from improper input validation that can downgrade the negotiated signature algorithm (e.g., client supports ECDSA P521 but server accepts and uses ECDSA P256), potentially weakenin...

2.7CVSS6.4AI score0.0015EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.4 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL CyaSSL versions 5.8.2 and earlier, which stems from improper validation of the TLS 1.3 CertificateVerify...

2.7CVSS6.3AI score0.0015EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-9551

Malware in sbrugna...

5.3CVSS5.3AI score0.00955EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5541

Malware in sbrugna...

5.3CVSS5.3AI score0.01755EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26667

Malware in sbrugna...

8.1CVSS8AI score0.00793EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7644

Malware in sbrugna...

5.9CVSS7.7AI score0.05031EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-23755

Malware in sbrugna...

10CVSS9.3AI score0.03524EPSS
Exploits1References6
Rows per page
Query Builder