Wolfssl: >> Wolfssl >> 5.8.4 Security Vulnerabilities
With TLS 1.2 connections a client can use any digest, specifically a weaker digest that is supported, rather than those in the CertificateRequest.
CVSS Score
2.3
EPSS Score
0.0
Published
2025-11-22
Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit specifically with a call to the function wc_XChaCha20Poly1305_Decrypt() which is not used with TLS connections, only from direct calls from an application.
CVSS Score
2.1
EPSS Score
0.0
Published
2025-11-21
Page 2