{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","type":"apk","namespace":"alpine","name":"wolfssl","version":"5.9.0-r0","qualifiers":{"arch":"armhf","distroversion":"edge","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"5.9.1-r0","latest_non_vulnerable_version":"5.9.1-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85604?format=json","vulnerability_id":"VCID-5fxd-yhdh-93c3","summary":"Out-of-bounds read in ALPN parsing due to incomplete validation. wolfSSL 5.8.4 and earlier contained an out-of-bounds read in ALPN handling when built with ALPN enabled (HAVE_ALPN / --enable-alpn). A crafted ALPN protocol list could trigger an out-of-bounds read, leading to a potential process crash (denial of service). Note that ALPN is disabled by default, but is enabled for these 3rd party compatibility features: enable-apachehttpd, enable-bind, enable-curl, enable-haproxy, enable-hitch, enable-lighty, enable-jni, enable-nginx, enable-quic.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3547","reference_id":"","reference_type":"","scores":[{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.1682","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3547"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9859","reference_id":"9859","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-21T03:33:12Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9859"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-3547"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5fxd-yhdh-93c3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73749?format=json","vulnerability_id":"VCID-5t9e-3e1y-x3gq","summary":"1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wc_PKCS7_DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Note that PKCS7 support is disabled by default.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4159","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05045","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4159"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4159","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4159"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9945","reference_id":"9945","reference_type":"","scores":[{"value":"1.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-20T16:28:57Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9945"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-4159"],"risk_score":0.6,"exploitability":"0.5","weighted_severity":"1.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5t9e-3e1y-x3gq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/81483?format=json","vulnerability_id":"VCID-8cky-7dxn-q3gn","summary":"A stack buffer overflow vulnerability exists in wolfSSL's PKCS7 SignedData encoding functionality. In wc_PKCS7_BuildSignedAttributes(), when adding custom signed attributes, the code passes an incorrect capacity value (esd->signedAttribsCount) to EncodeAttributes() instead of the remaining available space in the fixed-size signedAttribs[7] array. When an application sets pkcs7->signedAttribsSz to a value greater than MAX_SIGNED_ATTRIBS_SZ (default 7) minus the number of default attributes already added, EncodeAttributes() writes beyond the array bounds, causing stack memory corruption. In WOLFSSL_SMALL_STACK builds, this becomes heap corruption. Exploitation requires an application that allows untrusted input to control the signedAttribs array size when calling wc_PKCS7_EncodeSignedData() or related signing functions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0819","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06101","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0819"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0819","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0819"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9630","reference_id":"9630","reference_type":"","scores":[{"value":"2.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-19T17:19:26Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9630"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-0819"],"risk_score":1.0,"exploitability":"0.5","weighted_severity":"2.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8cky-7dxn-q3gn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85860?format=json","vulnerability_id":"VCID-g2kr-25e3-jff3","summary":"Protection mechanism failure in wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during Keccak-based expansion.\n\n\n\n\nThis issue affects wolfSSL (wolfCrypt): commit hash d86575c766e6e67ef93545fa69c04d6eb49400c6.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3503","reference_id":"","reference_type":"","scores":[{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00753","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3503"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3503","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3503"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9734","reference_id":"9734","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:P/AC:H/AT:P/PR:N/UI:N/VC:H/VI:L/VA:N/SC:L/SI:L/SA:N/U:Amber"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-19T19:24:29Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9734"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-3503"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g2kr-25e3-jff3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73419?format=json","vulnerability_id":"VCID-pjhe-euye-1uck","summary":"Heap-based buffer overflow in the KCAPI ECC code path of wc_ecc_import_x963_ex() in wolfSSL wolfcrypt allows a remote attacker to write attacker-controlled data past the bounds of the pubkey_raw buffer via a crafted oversized EC public key point. The WOLFSSL_KCAPI_ECC code path copies the input to key->pubkey_raw (132 bytes) using XMEMCPY without a bounds check, unlike the ATECC code path which includes a length validation. This can be triggered during TLS key exchange when a malicious peer sends a crafted ECPoint in ServerKeyExchange.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4395","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34488","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4395"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4395","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4395"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9988","reference_id":"9988","reference_type":"","scores":[{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/AU:Y/R:U/V:D/RE:L/U:Amber"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-20T17:09:25Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9988"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-4395"],"risk_score":0.6,"exploitability":"0.5","weighted_severity":"1.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pjhe-euye-1uck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85106?format=json","vulnerability_id":"VCID-q4qr-d5rm-q3dn","summary":"A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION() function. When deserializing session data with SESSION_CERTS enabled, certificate and session id lengths are read from an untrusted input without bounds validation, allowing an attacker to overflow fixed-size buffers and corrupt heap memory. A maliciously crafted session would need to be loaded from an external source to trigger this vulnerability. Internal sessions were not vulnerable.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-2646","reference_id":"","reference_type":"","scores":[{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12278","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-2646"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2646","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2646"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9748","reference_id":"9748","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:P"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-19T17:43:50Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9748"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9949","reference_id":"9949","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:P"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-19T17:43:50Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9949"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-2646"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q4qr-d5rm-q3dn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85371?format=json","vulnerability_id":"VCID-qb2p-81us-s7gh","summary":"In wolfSSL 5.8.4, constant-time masking logic in sp_256_get_entry_256_9 is optimized into conditional branches (bnez) by GCC when targeting RISC-V RV32I with -O3. This transformation breaks the side-channel resistance of ECC scalar multiplication, potentially allowing a local attacker to recover secret keys via timing analysis.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3580","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00426","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3580"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9855","reference_id":"9855","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-19T20:25:11Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9855"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-3580"],"risk_score":0.9,"exploitability":"0.5","weighted_severity":"1.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qb2p-81us-s7gh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85715?format=json","vulnerability_id":"VCID-tzqp-bbba-skcy","summary":"An integer overflow vulnerability existed in the static function wolfssl_add_to_chain, that caused heap corruption when certificate data was written out of bounds of an insufficiently sized certificate buffer. wolfssl_add_to_chain is called by these API: wolfSSL_CTX_add_extra_chain_cert, wolfSSL_CTX_add1_chain_cert, wolfSSL_add0_chain_cert. These API are enabled for 3rd party compatibility features: enable-opensslall, enable-opensslextra, enable-lighty, enable-stunnel, enable-nginx, enable-haproxy. This issue is not remotely exploitable, and would require that the application context loading certificates is compromised.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3229","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04476","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3229"},{"reference_url":"https://github.com/wolfSSL/wolfssl/pull/9827","reference_id":"9827","reference_type":"","scores":[{"value":"1.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-20T16:29:39Z/"}],"url":"https://github.com/wolfSSL/wolfssl/pull/9827"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/123361?format=json","purl":"pkg:apk/alpine/wolfssl@5.9.0-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}],"aliases":["CVE-2026-3229"],"risk_score":0.6,"exploitability":"0.5","weighted_severity":"1.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tzqp-bbba-skcy"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.9.0-r0%3Farch=armhf&distroversion=edge&reponame=community"}