CVE-2014-2901

wolfssl before 3.2.0 does not properly issue certificates for a server's hostname...

CVE-2014-2904

wolfssl before 3.2.0 has a server certificate that is not properly authorized for server authentication...

CVE-2014-2902

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates...

Design/Logic Flaw

wolfssl before 3.2.0 does not properly issue certificates for a server's hostname...

Code injection

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates...

Authentication flaw

wolfssl before 3.2.0 has a server certificate that is not properly authorized for server authentication...

UBUNTU-CVE-2014-2904

wolfssl before 3.2.0 has a server certificate that is not properly authorized for server authentication...

UBUNTU-CVE-2014-2901

wolfssl before 3.2.0 does not properly issue certificates for a server's hostname...

UBUNTU-CVE-2014-2902

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates...

CVE-2014-2904

wolfssl before 3.2.0 has a server certificate that is not properly authorized for server authentication...

CVE-2014-2904

CVE-2014-2904 affects wolfSSL prior to 3.2.0, where a server certificate is not properly authorized for server authentication. This has been documented across multiple sources (OSV, NVD, Debian/Ubuntu advisories, and CVE records). The description consistently notes the issue without detailing exp...

CVE-2014-2904

wolfssl before 3.2.0 has a server certificate that is not properly authorized for server authentication...

CVE-2014-2902

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates...

CVE-2014-2902

CVE-2014-2902 affects wolfSSL prior to 3.2.0 and indicates a flaw where the library does not properly authorize a CA certificate for signing other certificates. The connected OSV/NVD entries confirm the same description across multiple ecosystems. The core issue is a lack of proper CA certificate...

CVE-2014-2902

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates...

CVE-2014-2901

wolfssl before 3.2.0 does not properly issue certificates for a server's hostname...

CVE-2014-2901

CVE-2014-2901 concerns wolfSSL versions prior to 3.2.0 that do not properly issue certificates for a server’s hostname. Multiple sources (NVD, OSV, OSV-UBUNTU, Debian/Ubuntu trackers, Nessus plugin reference) corroborate the issue description. The connected documents provide the core detail: the ...

CVE-2014-2901

wolfssl before 3.2.0 does not properly issue certificates for a server's hostname...

wolfSSL Authorization Issue Vulnerability

wolfSSL formerly known as CyaSSL is the United States wolfSSL company for embedded systems developers to use a small, portable embedded SSL programming library. An authorization issue vulnerability exists in versions of wolfSSL prior to 3.2.0; no detailed vulnerability details are provided at thi...

OpenWrt ustream-ssl certificate verification information leak vulnerability

Talos Vulnerability Report TALOS-2019-0893 OpenWrt ustream-ssl certificate verification information leak vulnerability November 15, 2019 CVE Number CVE-2019-5101,CVE-2019-5102 SUMMARY An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and...