wolfSSL 厂商漏洞列表 / CVE 中文分析 62

wolfSSL 厂商相关 62 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

wolfSSL 是一款轻量级嵌入式 TLS 库，广泛用于物联网及资源受限设备，提供加密通信支持。其历史漏洞多集中于内存安全与协议解析缺陷，常见类型包括缓冲区溢出、空指针解引用及拒绝服务，极少涉及逻辑越权或远程代码执行。作为开源项目，其代码透明度高，但频繁更新以修复 CVE 问题。截至最新统计已收录 62 条 CVE，反映出其在复杂加密实现中仍需持续强化安全审计与边界检查机制。

上位製品 wolfSSL: wolfSSL wolfSSH wolfCrypt wolfSSL-py

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2026-0930	Potential wolfSSHd Buffer out-of-bounds Read on Windows Handling Terminal Resize — wolfSSHCWE-126	8.1^AI	High^AI	2026-04-20
CVE-2026-5477	Prefix-substitution forgery via integer overflow in wolfCrypt CMAC — wolfSSLCWE-190	7.5	-	2026-04-10
CVE-2026-5188	Integer underflow in X.509 SAN parsing in wolfSSL — wolfSSLCWE-191	6.5	-	2026-04-10
CVE-2026-5500	Improper Validation of AES-GCM Authentication Tag Length in PKCS#7 Envelope Allows Authentication Bypass — wolfSSLCWE-20	3.7	-	2026-04-10
CVE-2026-5501	Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates — wolfSSLCWE-295	5.9	-	2026-04-10
CVE-2026-5466	wc_VerifyEccsiHash missing sanity check — wolfSSLCWE-347	9.1	-	2026-04-10
CVE-2026-5479	wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag — wolfSSLCWE-354	7.5	-	2026-04-10
CVE-2026-5460	Heap Use-After-Free in PQC Hybrid KeyShare Error Cleanup in wolfSSL TLS 1.3 — wolfSSLCWE-416	9.1	-	2026-04-09
CVE-2026-5448	1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore — wolfSSLCWE-122	8.1	-	2026-04-09
CVE-2026-5392	wolfSSL heap OOB read in PKCS7 SignedData streaming — wolfSSLCWE-125	9.1	-	2026-04-09
CVE-2026-5393	OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTS — wolfSSLCWE-125	9.1	-	2026-04-09
CVE-2026-5295	Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID — wolfSSLCWE-121	9.8^AI	Critical^AI	2026-04-09
CVE-2026-5503	out-of-bounds write in TLSX_EchChangeSNI via attacker-controlled publicName — wolfSSLCWE-787	9.1^AI	Critical^AI	2026-04-09
CVE-2026-5504	PKCS7 CBC Padding Oracle — Plaintext Recovery — wolfSSLCWE-354	7.5^AI	High^AI	2026-04-09
CVE-2026-5507	Session Cache Restore — Arbitrary Free via Deserialized Pointer — wolfSSLCWE-502	8.1^AI	High^AI	2026-04-09
CVE-2026-5772	MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation — wolfSSLCWE-126	7.5^AI	High^AI	2026-04-09
CVE-2026-5778	Integer underflow leads to out-of-bounds access in sniffer ChaCha decrypt path. — wolfSSLCWE-191	7.5^AI	High^AI	2026-04-09
CVE-2026-5264	DTLS 1.3 ACK heap buffer overflow — wolfSSLCWE-122	9.8^AI	Critical^AI	2026-04-09
CVE-2026-5263	URI nameConstraints not enforced in ConfirmNameConstraints() — wolfSSLCWE-295	7.5^AI	High^AI	2026-04-09
CVE-2026-5446	wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse — wolfSSLCWE-323	9.1^AI	Critical^AI	2026-04-09
CVE-2026-5447	Heap buffer overflow in CertFromX509() via AuthorityKeyIdentifier — wolfSSLCWE-122	9.8^AI	Critical^AI	2026-04-09
CVE-2026-5187	Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL — wolfSSLCWE-122	8.4^AI	High^AI	2026-04-09
CVE-2026-5194	wolfSSL ECDSA Certificate Verification — wolfSSLCWE-295	5.3^AI	Medium^AI	2026-04-09
CVE-2026-4159	wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read — wolfSSLCWE-125	9.1	-	2026-03-19
CVE-2026-3230	Improper key_share validation in TLS 1.3 HelloRetryRequest — wolfSSLCWE-20	7.5	-	2026-03-19
CVE-2026-4395	Heap-based buffer overflow in wc_ecc_import_x963_ex KCAPI path — wolfsslCWE-122	9.1	-	2026-03-19
CVE-2026-3547	wolfSSL: out-of-bounds read (DoS) in ALPN parsing due to incomplete validation — wolfSSLCWE-125	7.5	High	2026-03-19
CVE-2026-3580	Compiler-induced timing leak in sp_256_get_entry_256_9 on RISC-V — wolfSSLCWE-203	5.5	-	2026-03-19
CVE-2026-3579	Non-constant time multiplication subroutine __muldi3 on RISC-V RV32I — wolfSSLCWE-203	7.5	-	2026-03-19
CVE-2026-3548	Buffer overflow in CRL number parsing in wolfSSL — wolfSSLCWE-787	8.8	-	2026-03-19

本页汇总了 wolfSSL 厂商截至目前公开的全部 62 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

wolfSSL 厂商漏洞列表 / CVE 中文分析 62

目標達成すべての支援者に感謝 — 100%達成しました！