| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-0930 | Potential wolfSSHd Buffer out-of-bounds Read on Windows Handling Terminal Resize | wolfSSL | wolfSSH | - | - | 2026-04-20 21:28:33 | Deep Dive |
| CVE-2026-5477 | Prefix-substitution forgery via integer overflow in wolfCrypt CMAC | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 05:06:23 | Deep Dive |
| CVE-2026-5188 | Integer underflow in X.509 SAN parsing in wolfSSL | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 03:24:21 | Deep Dive |
| CVE-2026-5500 | Improper Validation of AES-GCM Authentication Tag Length in PKCS#7 Envelope Allows Authentication Bypass | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 03:10:26 | Deep Dive |
| CVE-2026-5501 | Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 03:07:40 | Deep Dive |
| CVE-2026-5466 | wc_VerifyEccsiHash missing sanity check | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 03:00:43 | Deep Dive |
| CVE-2026-5479 | wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag | wolfSSL | wolfSSL | 中危 | - | 2026-04-10 02:38:40 | Deep Dive |
| CVE-2026-5460 | Heap Use-After-Free in PQC Hybrid KeyShare Error Cleanup in wolfSSL TLS 1.3 | wolfSSL | wolfSSL | 中危 | - | 2026-04-09 23:29:28 | Deep Dive |
| CVE-2026-5448 | 1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore | wolfSSL | wolfSSL | 中危 | - | 2026-04-09 23:18:16 | Deep Dive |
| CVE-2026-5392 | wolfSSL heap OOB read in PKCS7 SignedData streaming | wolfSSL | wolfSSL | 中危 | - | 2026-04-09 23:10:56 | Deep Dive |
| CVE-2026-5393 | OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTS | wolfSSL | wolfSSL | 中危 | - | 2026-04-09 23:02:29 | Deep Dive |
| CVE-2026-5295 | Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID | wolfSSL | wolfSSL | - | - | 2026-04-09 22:53:11 | Deep Dive |
| CVE-2026-5503 | out-of-bounds write in TLSX_EchChangeSNI via attacker-controlled publicName | wolfSSL | wolfSSL | - | - | 2026-04-09 22:35:39 | Deep Dive |
| CVE-2026-5504 | PKCS7 CBC Padding Oracle — Plaintext Recovery | wolfSSL | wolfSSL | - | - | 2026-04-09 22:33:42 | Deep Dive |
| CVE-2026-5507 | Session Cache Restore — Arbitrary Free via Deserialized Pointer | wolfSSL | wolfSSL | - | - | 2026-04-09 22:18:44 | Deep Dive |
| CVE-2026-5772 | MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation | wolfSSL | wolfSSL | - | - | 2026-04-09 21:50:04 | Deep Dive |
| CVE-2026-5778 | Integer underflow leads to out-of-bounds access in sniffer ChaCha decrypt path. | wolfSSL | wolfSSL | - | - | 2026-04-09 21:45:09 | Deep Dive |
| CVE-2026-5264 | DTLS 1.3 ACK heap buffer overflow | wolfSSL | wolfSSL | - | - | 2026-04-09 21:43:12 | Deep Dive |
| CVE-2026-5263 | URI nameConstraints not enforced in ConfirmNameConstraints() | wolfSSL | wolfSSL | - | - | 2026-04-09 21:15:48 | Deep Dive |
| CVE-2026-5446 | wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse | wolfSSL | wolfSSL | - | - | 2026-04-09 21:02:27 | Deep Dive |