CVE-2026-3549 in wofSSLالمعلومات

الملخص

بحسب MITRE • 20/03/2026

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

wolfSSL

حجز

04/03/2026

إفشاء

20/03/2026

الاعتدال

تمت الموافقة

إدخال

VDB-351980

CPE

جاهز

CWE

CWE-122 (مؤكد)

CVSS

9.8 (NVD)

EPSS

0.00027

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-3549
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-3549
CVE Details	https://www.cvedetails.com/cve/CVE-2026-3549/

التالي ▸نظرة عامة ◂ السابق

Do you need the next level of professionalism?

Upgrade your account now!