CVE-2026-2645 | THREATINT

Description

In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 server state machine implementation. The server could incorrectly accept the CertificateVerify message before the ClientKeyExchange message had been received. This issue affects wolfSSL before 5.8.4 (wolfSSL 5.8.2 and earlier is vulnerable, 5.8.4 is not vulnerable). In 5.8.4 wolfSSL would detect the issue later in the handshake. 5.9.0 was further hardened to catch the issue earlier in the handshake.

PUBLISHED Reserved 2026-02-17 | Published 2026-03-19 | Updated 2026-03-19 | Assigner wolfSSL

MEDIUM: 5.5CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P

Problem types

CWE-358: Improperly Implemented Security Check for Standard

Product status

Default status

unaffected

Any version before 5.8.4

affected

Credits

Kai Tian finder

References

github.com/wolfSSL/wolfssl/pull/9694

cve.org (CVE-2026-2645)

nvd.nist.gov (CVE-2026-2645)

Download JSON