Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

wolfSSL wolfMQTTBuffer overread in domain name matching

critical
10
First published (updated )
CVE-2024-5991

wolfSSL wolfMQTTHeap-buffer over-read with WOLFSSL_CALLBACKS

critical
9.1
First published (updated )
CVE-2023-6936

wolfSSL wolfMQTTTLS 1.3 client issue handling malicious server when not including a KSE and PSK extension

critical
9.1
First published (updated )
CVE-2023-3724

wolfSSL wolfMQTTIn wolfSSL before 5.5.2, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a …

critical
9.1
First published (updated )
CVE-2022-42905

wolfSSL wolfMQTTwolfSSL 5.x before 5.1.1 uses non-random IV values in certain situations. This affects connections (…

critical
9.1
First published (updated )
CVE-2022-23408

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

wolfSSL wolfMQTTwolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number i…

critical
9.8
First published (updated )
CVE-2021-37155

wolfSSL wolfMQTTRsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain rel…

critical
10
First published (updated )
CVE-2020-36177

wolfSSL wolfMQTTwolfSSL CyaSSL before 2.9.4 allows remote attackers to have unspecified impact via multiple calls to…

critical
9.8
First published (updated )
CVE-2014-2898

wolfSSL wolfMQTTThe SSL 3 HMAC functionality in wolfSSL CyaSSL 2.5.0 before 2.9.4 does not check the padding length …

critical
9.8
First published (updated )
CVE-2014-2897

wolfSSL wolfMQTTThe DoAlert function in the (1) TLS and (2) DTLS implementations in wolfSSL CyaSSL before 2.9.4 allo…

critical
9.8
First published (updated )
CVE-2014-2896

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

wolfSSL wolfMQTTIn wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certif…

critical
9.8
First published (updated )
CVE-2019-16748

wolfSSL wolfMQTTwolfSSL 4.1.0 has a one-byte heap-based buffer over-read in DecodeCertExtensions in wolfcrypt/src/as…

critical
9.8
First published (updated )
CVE-2019-15651

wolfSSL wolfMQTTBuffer Overflow

critical
9.8
First published (updated )
CVE-2019-11873

wolfSSL wolfMQTTBuffer Overflow

critical
9.8
First published (updated )
CVE-2019-6439

wolfSSL wolfMQTTA specially crafted x509 certificate can cause a single out of bounds byte overwrite in wolfSSL thro…

critical
9.8
First published (updated )
CVE-2017-2800

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203