Shodan
Vulnerabilities
Vulnerable Software
Wolfssl:  Security Vulnerabilities
CVE-2022-25640
In wolfSSL before 5.2.0, a TLS 1.3 server cannot properly enforce a requirement for mutual authentication. A client can simply omit the certificate_verify message from the handshake, and never present a certificate.
CVSS Score
7.5
EPSS Score
0.04
Published
2022-02-24
CVE-2022-23408
wolfSSL 5.x before 5.1.1 uses non-random IV values in certain situations. This affects connections (without AEAD) using AES-CBC or DES3 with TLS 1.1 or 1.2 or DTLS 1.1 or 1.2. This occurs because of misplaced memory initialization in BuildMessage in internal.c.
CVSS Score
9.1
EPSS Score
0.004
Published
2022-01-18
CVE-2021-45932
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (4 bytes) in MqttDecode_Publish (called from MqttClient_DecodePacket and MqttClient_HandlePacket).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45933
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (8 bytes) in MqttDecode_Publish (called from MqttClient_DecodePacket and MqttClient_HandlePacket).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45934
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_HandlePacket and MqttClient_WaitType).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45936
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttDecode_Disconnect (called from MqttClient_DecodePacket and MqttClient_WaitType).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45937
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Connect).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45938
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Unsubscribe).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-45939
wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Subscribe).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-01
CVE-2021-38597
wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.
CVSS Score
5.9
EPSS Score
0.002
Published
2021-08-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved