Zero Day MonitorZDM

← Back to list

—

CVE-2026-5393EXPLOITEDPATCHED

wolfssl · wolfssl

OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTS

Description

Dual-Algorithm CertificateVerify out-of-bounds read. When processing a dual-algorithm CertificateVerify message, an out-of-bounds read can occur on crafted input. This can only occur when --enable-experimental and --enable-dual-alg-certs is used when building wolfSSL.

Affected Products

Vendor	Product	Versions
wolfssl	wolfssl	0

References

https://github.com/wolfSSL/wolfssl/pull/10079

Related News (2 articles)

Tier C

oss-security8h ago

wolfSSL 5.9.1 CVE and non-CVE fixes

→ No new info (linked only)

Tier C

VulDB4d ago

CVE-2026-5393 | wolfSSL up to 5.9.0 out-of-bounds

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

5.9.1

CWECWE-125

PublishedApr 9, 2026

Last enriched4d agov2

Tags

CVE-2026-5393

Trending Score59

Source articles2

Independent2

Info Completeness8/14

Missing: cvss, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-5194EXP

wolfSSL ECDSA Certificate Verification

CRITICALCVE-2026-5187EXP

Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL

NONECVE-2026-5446EXP

wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse

NONECVE-2026-5501EXP

Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates

NONECVE-2026-5477EXP

Prefix-substitution forgery via integer overflow in wolfCrypt CMAC

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 9, 2026

Discovered by ZDM

Apr 9, 2026

Updated: affectedVersions, severity, activelyExploited, tags

Apr 10, 2026

Actively Exploited

Apr 10, 2026

Patch Available

Apr 10, 2026

Version History

v2

Last enriched 4d ago

v2Tier C4d ago

Updated affected versions to include 5.9.0, changed severity to HIGH, and noted that the vulnerability is actively exploited.

affectedVersionsseverityactivelyExploitedtags

via VulDB

v14d ago

Initial creation