Vulnerabilities

CVE-2025-11933

by Fred · 21/11/2025

Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to potentially cause a denial-of-service via a crafted ClientHello message with duplicate CKS extensions.

More information : https://github.com/wolfSSL/wolfssl

Similar

Tags: Cybersecurity Alert