Primary

Context

wolfSSL CertFromX509 AuthorityKeyIdentifier Heap Buffer Overflow Vulnerability

Vulnerability

A heap buffer overflow vulnerability has been identified in wolfSSL's CertFromX509 function, specifically related to the handling of the AuthorityKeyIdentifier extension in X.509 certificates. This vulnerability arises from incorrect size management of the AuthorityKeyIdentifier, leading to the potential for memory corruption.

Impact

Exploitation of this vulnerability leads to a heap buffer overflow, which can commonly result in memory corruption and potentially allow for arbitrary code execution.

Remediation

Users are advised to update to the latest version of wolfSSL where this vulnerability has been addressed.

Added: Apr 10, 2026, 1:15 AM

Updated: Apr 10, 2026, 1:15 AM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

0.6

exploitability

5.3

remediation

7.7

relevance

5.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

0.6

exploitability

5.3

remediation

7.7

relevance

5.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

wolfSSL CertFromX509 AuthorityKeyIdentifier Heap Buffer Overflow Vulnerability

Vulnerability

Impact

Remediation

Affected Products

wolfSSL

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating