CVE-2026-5448

EPSS 0.02%
Veröffentlicht 10.04.2026 00:16:35
Zuletzt bearbeitet 29.04.2026 13:56:59
Quelle facts@wolfssl.com
CVE-Watchlists
Login
Unerledigt
Login

1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore

X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A buffer overflow may occur when parsing date fields from a crafted X.509 certificate via the compatibility layer API. This is only triggered when calling these two APIs directly from an application, and does not affect TLS or certificate verify operations in wolfSSL.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wolfssl ≫ Wolfssl Version < 5.9.1

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.053

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
facts@wolfssl.com	2.3	0	0	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

https://github.com/wolfSSL/wolfssl/pull/10071

Patch

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2026-5448

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-5448

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-5448

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-5448