wolfSSL Heap Overflow Vulnerability in TLS 1.3 ECH Parsing

Vulnerability

A heap overflow vulnerability has been identified in wolfSSL's implementation of TLS 1.3, specifically in the parsing of the Encrypted Client Hello (ECH) extension. This vulnerability arises from an integer underflow in the ECH extension parsing logic, which leads to a buffer length calculation error. As a result, data can be written beyond the limits of an allocated buffer, creating a potential security risk. It is important to note that ECH is disabled by default in wolfSSL, and the ECH standard is still being developed.

Impact

Exploitation of this vulnerability leads to a heap overflow, which can commonly result in arbitrary code execution or memory corruption.

Added: Mar 19, 2026, 9:22 PM

Updated: Mar 19, 2026, 9:22 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

5.3

remediation

0.0

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

5.3

remediation

0.0

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

wolfSSL Heap Overflow Vulnerability in TLS 1.3 ECH Parsing

Vulnerability

Impact

Affected Products

wolfSSL

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating