| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14942 | Authentication Bypass | wolfSSL | wolfSSH | 超危 | - | 2026-01-06 17:26:30 | Deep Dive |
| CVE-2025-13912 | Potential non-constant time compiled code with Clang LLVM | wolfSSL | wolfSSL | - | - | 2025-12-11 17:09:59 | Deep Dive |
| CVE-2025-12889 | TLS 1.2 Client Can Downgrade Digest Used | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 23:07:00 | Deep Dive |
| CVE-2025-11932 | Timing Side-Channel in PSK Binder Verification | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 23:01:03 | Deep Dive |
| CVE-2025-11931 | Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 22:57:33 | Deep Dive |
| CVE-2025-12888 | Constant Time Issue with Xtensa-based ESP32 and X22519 | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 22:50:31 | Deep Dive |
| CVE-2025-11936 | Potential DoS Vulnerability through Multiple KeyShareEntry with Same Group in TLS 1.3 ClientHello | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 22:24:27 | Deep Dive |
| CVE-2025-11933 | DoS Vulnerability in wolfSSL TLS 1.3 CKS Extension | wofSSL | wolfSSL | 中危 | - | 2025-11-21 22:19:09 | Deep Dive |
| CVE-2025-11934 | Improper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerify | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 22:12:38 | Deep Dive |
| CVE-2025-11935 | Forward Secrecy Violation in WolfSSL TLS 1.3 | wolfSSL | wolfSSL | 中危 | - | 2025-11-21 22:04:52 | Deep Dive |
| CVE-2025-11625 | Host verification bypass and credential leak | wolfSSL | wolfSSH | - | - | 2025-10-21 13:25:18 | Deep Dive |
| CVE-2025-7844 | wolfTPM library wrapper function `wolfTPM2_RsaKey_TpmToWolf` copies external data to a fixed-size stack buffer without length validation potentially causing stack-based buffer overflow | wolfSSL Inc. | wolfTPM | - | - | 2025-08-04 21:35:04 | Deep Dive |
| CVE-2025-7396 | Curve25519 Blinding | wolfSSL | wolfSSL | 中危 | - | 2025-07-18 22:51:19 | Deep Dive |
| CVE-2025-7394 | OpenSSL 安全漏洞 | wolfSSL | wolfSSL | 中危 | - | 2025-07-18 22:34:24 | Deep Dive |
| CVE-2025-7395 | Domain Name Validation Bypass with Apple Native Certificate Validation | wolfSSL | wolfSSL | 高危 | - | 2025-07-18 22:15:59 | Deep Dive |
| CVE-2024-2881 | Fault Injection of EdDSA signature in WolfCrypt | WolfSSL | wolfCrypt | Medium | 6.7 | 2024-08-29 23:10:59 | Deep Dive |
| CVE-2024-1545 | Fault Injection of RSA encryption in WolfCrypt | WolfSSL | wolfCrypt | Medium | 5.9 | 2024-08-29 23:02:48 | Deep Dive |
| CVE-2024-1543 | AES T-Table sub-cache-line leakage | wolfSSL | wolfSSL | Medium | 4.1 | 2024-08-29 22:43:36 | Deep Dive |
| CVE-2024-1544 | ECDSA nonce bias caused by truncation | wolfSSL | wolfSSL | Medium | 4.1 | 2024-08-27 18:44:53 | Deep Dive |
| CVE-2024-5814 | Unverifed Ciphersuite used on a client-side TLS1.3 Downgrade | wolfSSL | wolfSSL | - | - | 2024-08-27 18:38:09 | Deep Dive |