CVE-2026-5393 | THREATINT

Description

Dual-Algorithm CertificateVerify out-of-bounds read. When processing a dual-algorithm CertificateVerify message, an out-of-bounds read can occur on crafted input. This can only occur when --enable-experimental and --enable-dual-alg-certs is used when building wolfSSL.

PUBLISHED Reserved 2026-04-01 | Published 2026-04-09 | Updated 2026-04-10 | Assigner wolfSSL

MEDIUM: 6.3CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-125 Out-of-bounds Read

Product status

Default status

unaffected

Any version before 5.9.1

affected

Credits

Sunwoo Lee, (Korea Institute of Energy Technology, KENTECH) for testing other

Woohyun Choi, (Korea Institute of Energy Technology, KENTECH) for testing other

Seunghyun Yoon, (Korea Institute of Energy Technology, KENTECH) for testing other

References

github.com/wolfSSL/wolfssl/pull/10079

cve.org (CVE-2026-5393)

nvd.nist.gov (CVE-2026-5393)

Download JSON