| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5447 | Heap buffer overflow in CertFromX509() via AuthorityKeyIdentifier | wolfSSL | wolfSSL | - | - | 2026-04-09 20:13:34 | Deep Dive |
| CVE-2026-5187 | Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL | wolfSSL | wolfSSL | - | - | 2026-04-09 19:45:40 | Deep Dive |
| CVE-2026-5194 | wolfSSL ECDSA Certificate Verification | wolfSSL | wolfSSL | - | - | 2026-04-09 19:30:24 | Deep Dive |
| CVE-2026-4159 | wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read | wolfSSL | wolfSSL | 超危 | - | 2026-03-19 21:17:46 | Deep Dive |
| CVE-2026-3229 | Integer Overflow in Certificate Chain Allocation | wofSSL | wolfSSL | 中危 | - | 2026-03-19 21:07:06 | Deep Dive |
| CVE-2026-3230 | Improper key_share validation in TLS 1.3 HelloRetryRequest | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 20:59:54 | Deep Dive |
| CVE-2026-4395 | Heap-based buffer overflow in wc_ecc_import_x963_ex KCAPI path | wolfSSL | wolfssl | 中危 | - | 2026-03-19 20:41:56 | Deep Dive |
| CVE-2026-3849 | Buffer Overflow in HPKE via Oversized ECH Config | wolfSSL Inc. | wolfSSL | 中危 | - | 2026-03-19 20:29:31 | Deep Dive |
| CVE-2026-3547 | wolfSSL: out-of-bounds read (DoS) in ALPN parsing due to incomplete validation | wolfSSL | wolfSSL | High | 7.5 | 2026-03-19 20:20:43 | Deep Dive |
| CVE-2026-3549 | ECH parsing heap buffer overflow | wofSSL | wolfSSL | 中危 | - | 2026-03-19 20:09:27 | Deep Dive |
| CVE-2026-3580 | Compiler-induced timing leak in sp_256_get_entry_256_9 on RISC-V | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 19:46:59 | Deep Dive |
| CVE-2026-3579 | Non-constant time multiplication subroutine __muldi3 on RISC-V RV32I | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 19:37:24 | Deep Dive |
| CVE-2026-3503 | Fault injection attack with ML-DSA and ML-KEM on ARM | wolfSSL Inc. | wolfSSL (wolfCrypt) | 中危 | - | 2026-03-19 18:12:27 | Deep Dive |
| CVE-2026-3548 | Buffer overflow in CRL number parsing in wolfSSL | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 17:45:17 | Deep Dive |
| CVE-2026-2646 | Heap buffer overflow in session parsing with wolfSSL_d2i_SSL_SESSION() function | wolfssl | wolfssl | 中危 | - | 2026-03-19 17:25:43 | Deep Dive |
| CVE-2026-2645 | Acceptance of CertificateVerify Message before ClientKeyExchange in TLS 1.2 | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 17:10:23 | Deep Dive |
| CVE-2026-1005 | Integer underflow leads to out-of-bounds access in sniffer AES-GCM/CCM/ARIA-GCM decrypt path | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 17:00:10 | Deep Dive |
| CVE-2026-0819 | Stack buffer overflow in PKCS7 SignedData encoding with custom signed attributes | wolfSSL | wolfSSL | 中危 | - | 2026-03-19 16:54:33 | Deep Dive |
| CVE-2025-15346 | wolfSSL Python library `CERT_REQUIRED` mode fails to enforce client certificate requirement | wolfSSL | wolfSSL-py | 中危 | - | 2026-01-07 23:32:11 | Deep Dive |
| CVE-2025-15382 | Client SCP Request Triggers Buffer Overread by 1 Byte | wolfSSL | wolfSSH | 中危 | - | 2026-01-06 17:43:44 | Deep Dive |